CVE-2013-7331

The Microsoft.XMLDOM ActiveX control in Microsoft Windows 8.1 and earlier allows remote attackers to determine the existence of local pathnames, UNC share pathnames, intranet hostnames, and intranet IP addresses by examining error codes, as demonstrated by a res:// URL, and exploited in the wild in February 2014.

Published: Feb 26, 2014
Updated: Apr 13, 2023
CVE: CVE-2013-7331
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
microsoft / internet_explorer	6	6.x
microsoft / internet_explorer	7	7.x
microsoft / internet_explorer	8	8.x
microsoft / internet_explorer	9	9.x
microsoft / internet_explorer	10	10.x
microsoft / internet_explorer	11	11.x

http://www.fireeye.com/blog/uncategorized/2014/02/operation-snowman-deputydog-actor-compromises-us-veterans-of-foreign-wars-website.html
http://www.kb.cert.org/vuls/id/539289
http://www.securitytracker.com/id/1030818
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-052
https://soroush.secproject.com/blog/2013/04/microsoft-xmldom-in-ie-can-divulge-information-of-local-drivenetwork-in-error-messages/

Vulnerability Database

289,599

CVE-2013-7331