(MS13-028) Cumulative Security Update for Internet Explorer (2817183)

  Severity: CRITICAL
  CVE Identifier: CVE-2013-1303,CVE-2013-1304,CVE-2013-1338
  Advisory Date: MAY 14, 2013

  DESCRIPTION

This security update resolves two reported vulnerabilities in Internet Explorer. These vulnerabilities, if left unpatched, could allow remote code execution if a user views a specially crafted webpage using the vulnerable browser. An attacker who successfully exploits these vulnerabilities may gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

The vulnerabilities affect Internet Explorer versions 6 to 10.

  SOLUTION

  AFFECTED SOFTWARE AND VERSION

  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 6
  • Internet Explorer 7
  • Internet Explorer 8

Featured Stories