Cumulative Security Update for Internet Explorer 10 in Windows Server 2012 x64 Edition (KB2846071)
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
85.003%
CVE Information
Source CVE
CVE-2013-3163
Associated CVE
CVE-2013-3163
CVE-2013-3846
CVE-2013-3166
CVE-2013-4015
CVE-2013-3145
CVE-2013-3151
CVE-2013-3164
CVE-2013-3162
CVE-2013-3161
CVE-2013-3153
CVE-2013-3152
CVE-2013-3115
CVE-2013-3150
CVE-2013-3149
CVE-2013-3148
CVE-2013-3147
CVE-2013-3146
CVE-2013-3144
CVE-2013-3143
CVE-2013-3163
Associated CVE
CVE-2013-3163
CVE-2013-3846
CVE-2013-3166
CVE-2013-4015
CVE-2013-3145
CVE-2013-3151
CVE-2013-3164
CVE-2013-3162
CVE-2013-3161
CVE-2013-3153
CVE-2013-3152
CVE-2013-3115
CVE-2013-3150
CVE-2013-3149
CVE-2013-3148
CVE-2013-3147
CVE-2013-3146
CVE-2013-3144
CVE-2013-3143
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
13985
Patch Description
Cumulative Security Update for Internet Explorer 10 in Windows Server 2012 x64 Edition (KB2846071)
References
http://blog.skylined.nl/20161214001.html
http://packetstormsecurity.com/files/140166/Microsoft-Internet-Explorer-9-IEFRAME-CMarkup..RemovePointerPos-Use-After-Free.html
http://technet.microsoft.com/security/bulletin/MS13-055
http://www.us-cert.gov/ncas/alerts/TA13-190A
http://www.zerodayinitiative.com/advisories/ZDI-13-231/
https://exchange.xforce.ibmcloud.com/vulnerabilities/85762
https://www.exploit-db.com/exploits/40923/