CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2013-5065

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score29.6900%
EPSS Percentile97.86th
Published2013年11月28日
Last Modified2026年4月22日

Vulnerability Description

NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in November 2013.

Affected Platforms (CPE)

💻
Microsoft

Windows 2003 Server

All versions
💻
Microsoft

Windows Xp

All versions
💻
Microsoft

Windows Xp

All versions

References & Advisories

🔗 http://technet.microsoft.com/security/advisory/2914486
🔗 http://www.fireeye.com/blog/technical/cyber-exploits/2013/11/ms-windows-local-privilege-escalation-zero-day-in-the-wild.html
🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-002
🔗 https://www.exploit-db.com/exploits/37732/
🔗 http://technet.microsoft.com/security/advisory/2914486
🔗 http://www.fireeye.com/blog/technical/cyber-exploits/2013/11/ms-windows-local-privilege-escalation-zero-day-in-the-wild.html
🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-002
🔗 https://www.exploit-db.com/exploits/37732/

相關漏洞威脅

CVE-2004-020910.0

Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 al...

CVE-2004-042010.0

The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows ...

CVE-2004-020110.0

Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Serve...

CVE-2004-057410.0

The Network News Transfer Protocol (NNTP) component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, ...