CVE-2013-5046: Input Validation
First published: Wed Dec 11 2013(Updated: )
Microsoft Internet Explorer 7 through 11 allows local users to bypass the Protected Mode protection mechanism, and consequently gain privileges, by leveraging the ability to execute sandboxed code, aka "Internet Explorer Elevation of Privilege Vulnerability."
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Internet Explorer | =7 | |
| Internet Explorer | =8 | |
| Internet Explorer | =9 | |
| Internet Explorer | =10 | |
| Internet Explorer | =11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2013-5046?
CVE-2013-5046 is classified as an elevation of privilege vulnerability which can allow local users to gain increased privileges.
How do I fix CVE-2013-5046?
To fix CVE-2013-5046, users should apply the security update provided by Microsoft for Internet Explorer.
Which versions of Internet Explorer are affected by CVE-2013-5046?
CVE-2013-5046 affects Internet Explorer versions 7 through 11.
What is the impact of CVE-2013-5046 on system security?
CVE-2013-5046 allows local users to bypass Protected Mode, compromising the integrity of the user's system.
Who can exploit CVE-2013-5046?
CVE-2013-5046 can potentially be exploited by local users who have the ability to execute sandboxed code.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/microsoft
- canonical/internet explorer
- version/internet explorer/7
- version/internet explorer/8
- version/internet explorer/9
- version/internet explorer/10
- version/internet explorer/11