(MS13-028) Cumulative Security Update for Internet Explorer (2817183)
Severity: CRITICAL
CVE Identifier: CVE-2013-1303,CVE-2013-1304,CVE-2013-1338
Advisory Date: MAY 14, 2013
DESCRIPTION
This security update resolves two reported vulnerabilities in Internet Explorer. These vulnerabilities, if left unpatched, could allow remote code execution if a user views a specially crafted webpage using the vulnerable browser. An attacker who successfully exploits these vulnerabilities may gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
The vulnerabilities affect Internet Explorer versions 6 to 10.
SOLUTION
AFFECTED SOFTWARE AND VERSION
- Internet Explorer 9
- Internet Explorer 10
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8