CVE-2013-1347

Related Files

Apple Security Advisory 2014-15-20-1

Posted May 22, 2014

Authored by Apple | Site apple.com

Apple Security Advisory 2014-15-20-1 - OS X Server 3.1.2 is now available and addresses a security issue with Ruby.

tags | advisory, ruby

systems | apple, osx

advisories | CVE-2013-1347

SHA-256 | bfce49f39e7a268a72f7369a75b2a37d4f854447872c18e703a46b24932bbd5b

Download | Favorite | View

Microsoft Internet Explorer CGenericElement Object Use-After-Free

Posted May 7, 2013

Authored by sinn3r, juan vazquez, temp66, EMH | Site metasploit.com

This Metasploit module exploits a vulnerability found in Microsoft Internet Explorer. A use-after-free condition occurs when a CGenericElement object is freed, but a reference is kept on the Document and used again during rendering, an invalid memory that's controllable is used, and allows arbitrary code execution under the context of the user. Please note: This vulnerability has been exploited in the wild on 2013 May, in the compromise of the Department of Labor (DoL) Website.

tags | exploit, arbitrary, code execution

advisories | CVE-2013-1347, OSVDB-92993

SHA-256 | 723999396b06b95680fb759bf7a793de8245f41f4c76b136b6109a09e4954141

Download | Favorite | View