Oval Definition:oval:org.mitre.oval:def:18989
Revision Date:2014-08-18Version:49
Title:Internet Explorer Memory Corruption Vulnerability (CVE-2013-3897) - MS13-080
Description:Use-after-free vulnerability in the CDisplayPointer class in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted JavaScript code that uses the onpropertychange event handler, as exploited in the wild in September and October 2013, aka "Internet Explorer Memory Corruption Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2013-3897
Platform(s):Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Internet Explorer 10
Microsoft Internet Explorer 11
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
Microsoft Internet Explorer 8
Microsoft Internet Explorer 9
Definition Synopsis
  • ie6
  • Microsoft Internet Explorer 6 is installed
  • AND either os
  • ie6 on win xp
  • Microsoft Windows XP (32-bit) is installed
  • AND Check if the version of mshtml.dll is less than 6.0.2900.6452
  • OR ie 6 on win xp 64 bit, server 2003 (32+64+ia64)
  • either of the os
  • Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (32-bit) is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Server 2003 (ia64) Gold is installed
  • AND Check if the version of mshtml.dll is less than 6.0.3790.5226
  • OR ie7
  • Microsoft Internet Explorer 7 is installed
  • AND either os
  • win xp/server 2003
  • either os
  • Microsoft Windows XP (32-bit) is installed
  • OR Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (32-bit) is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Server 2003 (ia64) Gold is installed
  • AND Check if the version of mshtml.dll is less than 7.0.6000.21357
  • OR vista/server 2008
  • either os
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND Check for vulnerable version
  • Check if the version of mshtml.dll is less than 7.0.6002.18945
  • OR ie 8 on win xp/2003/vista/2008/win 7/2008 R2
  • Microsoft Internet Explorer 8 is installed
  • AND either os
  • win xp/server 2003
  • either os
  • Microsoft Windows XP (32-bit) is installed
  • OR Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (32-bit) is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • AND Check if the version of mshtml.dll is less than 8.0.6001.23532
  • OR vista/server 2008
  • either os
  • Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • AND Check for vulnerable version
  • Check if the version of mshtml.dll is less than 8.0.6001.19475
  • OR win 7/server 2008 r2 and version
  • win 7/server 2008 r2
  • Microsoft Windows 7 (32-bit) is installed
  • OR Microsoft Windows 7 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 Itanium-Based Edition is installed
  • AND Check for vulnerable version
  • Check if the version of mshtml.dll is less than 8.0.7601.18269
  • OR ie 9 on winvista/2008/win 7/2008 r2
  • Microsoft Internet Explorer 9 is installed
  • AND win vista/2008/7/2008 r2
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows 7 (32-bit) is installed
  • OR Microsoft Windows 7 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 x64 Edition is installed
  • AND Check for vulnerable version
  • Check if the version of mshtml.dll is less than 9.0.8112.16514
  • OR Check for LDR
  • Check if the version of mshtml.dll is greater than or equal to 9.0.8112.20000
  • AND Check if the version of mshtml.dll is less than 9.0.8112.20625
  • OR IE 10 and vulnerable file version
  • Microsoft Internet Explorer 10 is installed
  • AND Win 7 / R2 / Win 8 / 2k12 and vulnerable file version
  • Microsoft Windows 7 (32-bit) is installed
  • OR Microsoft Windows 7 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 x64 Edition is installed
  • OR Microsoft Windows 8 (x86) is installed
  • OR Microsoft Windows 8 (x64) is installed
  • OR Microsoft Windows Server 2012 (64-bit) is installed
  • AND Check for vulnerable version
  • Check if the version of mshtml.dll is less than 10.0.9200.16721
  • OR Check for LDR
  • Check if the version of mshtml.dll is greater than or equal to 10.0.9200.20000
  • AND Check if the version of mshtml.dll is less than 10.0.9200.20831
  • OR IE 11 and vulnerable file version
  • Microsoft Internet Explorer 11 is installed
  • AND Win 8.1 / 2k12 R2 and vulnerable file version
  • Microsoft Windows 8.1 is installed
  • OR Microsoft Windows Server 2012 R2 is installed
  • AND Check if the version of mshtml.dll is less than 11.0.9600.16412
    • BACK