1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Microsoft Internet Explorer CVE-2013-1298

Web Attack: Microsoft Internet Explorer CVE-2013-1298

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit out-of-bounds array indexing vulnerability in Microsoft Internet Explore.

Additional Information

An out-of-bounds array indexing vulnerability exists in Internet Explorer while accessing a dynamic array of attributes of a VML shape object. The vulnerability may corrupt memory in such a way that will allow arbitrary memory read/write leading to a crash or to execute arbitrary code in the context of the current user.

Affected

  • Microsoft Internet Explorer 10
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube