← back
CVE-2013-3893

CVE-2013-3893

CVSS 8.8 HIGHEPSS 85.9%● KEVCWE-416
In short

Internet Explorer has a bug where malicious websites can run harmful code on your computer by using specially crafted JavaScript. This happens because the browser doesn't properly manage memory when handling mouse capture, allowing attackers to access areas of memory that have already been freed.

Technical detail

Use-after-free vulnerability in mshtml.dll's SetMouseCapture implementation allows remote code execution when processing crafted JavaScript. Exploitation leverages ms-help: URLs to trigger hxds.dll loading, enabling arbitrary code execution in the context of the IE process without user interaction beyond visiting a malicious page.

Summary generated and translated by AI from the official description.
Use-after-free vulnerability in the SetMouseCapture implementation in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code via crafted JavaScript strings, as demonstrated by use of an ms-help: URL that triggers loading of hxds.dll.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
public PoCs found3
cve_referencepacketstormsecurity.com/files/162585/Microsoft-Internet-Explorer-8-SetMouseCapture-Use-After-Free.htmlunverifiedexploitdbwww.exploit-db.com/exploits/49872unverifiedexploitdbwww.exploit-db.com/exploits/28682unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blogs.technet.com/b/srd/archive/2013/09/17/cve-2013-3893-fix-it-workaround-available.aspxhttp://blogs.technet.com/b/srd/archive/2013/10/08/ms13-080-addresses-two-vulnerabilities-under-limited-targeted-attacks.aspxhttp://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-000093.htmlhttp://jvn.jp/en/jp/JVN27443259/index.htmlhttp://packetstormsecurity.com/files/162585/Microsoft-Internet-Explorer-8-SetMouseCapture-Use-After-Free.htmlhttp://pastebin.com/raw.php?i=Hx1L5gu6https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-080https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18665https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-3893http://technet.microsoft.com/security/advisory/2887505http://www.securityfocus.com/bid/62453http://www.us-cert.gov/ncas/alerts/TA13-288A