CVE-2013-3897 : Use-after-free vulnerability in the CDisplayPointer class in mshtml.dll in Microsoft Internet Explorer 6 through 11 allo

Use-after-free vulnerability in the CDisplayPointer class in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted JavaScript code that uses the onpropertychange event handler, as exploited in the wild in September and October 2013, aka "Internet Explorer Memory Corruption Vulnerability."

Published 2013-10-09 14:54:26

Updated 2018-10-12 22:05:15

Source Microsoft Corporation

View at NVD, CVE.org

Vulnerability category: Memory CorruptionExecute codeDenial of service

CVE-2013-3897 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Microsoft Internet Explorer Use-After-Free Vulnerability

CISA required action:

Apply updates per vendor instructions.

CISA description:

A use-after-free vulnerability exists within CDisplayPointer in Microsoft Internet Explorer that allows an attacker to remotely execute arbitrary code.

Added on 2022-03-03 Action due date 2022-03-24

Exploit prediction scoring system (EPSS) score for CVE-2013-3897

Probability of exploitation activity in the next 30 days: 96.50%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2013-3897

MS13-080 Microsoft Internet Explorer CDisplayPointer Use-After-Free

Disclosure Date: 2013-10-08

First seen: 2020-04-26

exploit/windows/browser/ms13_080_cdisplaypointer

This module exploits a vulnerability found in Microsoft Internet Explorer. It was originally found being exploited in the wild targeting Japanese and Korean IE8 users on Windows XP, around the same time frame as CVE-2013-3893, except this was kept out of the public eye by

More information

CVSS scores for CVE-2013-3897

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2013-3897

CWE-399

Assigned by: nvd@nist.gov (Primary)

References for CVE-2013-3897

http://blogs.technet.com/b/srd/archive/2013/10/08/ms13-080-addresses-two-vulnerabilities-under-limited-targeted-attacks.aspx

MS13-080 addresses two vulnerabilities under limited, targeted attacks – Microsoft Security Response Center
Vendor Advisory

CVEs referencing this url
http://www.us-cert.gov/ncas/alerts/TA13-288A

Microsoft Updates for Multiple Vulnerabilities | CISA
US Government Resource

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18989

Repository / Oval Repository
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-080

Microsoft Security Bulletin MS13-080 - Critical | Microsoft Docs

CVEs referencing this url

Products affected by CVE-2013-3897

Microsoft » Internet Explorer » Version: 6
cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
Matching versions
Microsoft » Internet Explorer » Version: 7
cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:*
Matching versions
Microsoft » Internet Explorer » Version: 8
cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*
Matching versions
Microsoft » Internet Explorer » Version: 9
cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
Matching versions
Microsoft » Internet Explorer » Version: 10
cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
Matching versions
Microsoft » Internet Explorer » Version: 11 Update Developer-preview
cpe:2.3:a:microsoft:internet_explorer:11:developer-preview:*:*:*:*:*:*
Matching versions
Microsoft » Internet Explorer » Version: 11 Update Release-preview
cpe:2.3:a:microsoft:internet_explorer:11:release-preview:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2013-3897