cve-2013-3893

About this tag
CVE-2013-3893 is a Microsoft Graphics Component Memory Corruption Vulnerability that affects Internet Explorer. It was addressed in security bulletin MS13-096. The vulnerability could allow remote code execution if a user visits a malicious website. In 2025, CISA added this vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, indicating it is actively exploited and requires federal agencies to remediate quickly. The vulnerability was originally disclosed in 2013 and has been used in limited targeted attacks, particularly against Internet Explorer 8 and 9. Users should ensure they have applied the MS13-096 update to protect against potential exploitation.

  1. CISA Adds Three Exploited CVEs to KEV Catalog: IE, Excel, WinRAR (2025)

    CISA’s latest update places three long‑standing and newly discovered flaws squarely in the crosshairs of enterprise defenders, adding CVE‑2013‑3893 (Internet Explorer), CVE‑2007‑0671 (Microsoft Excel), and CVE‑2025‑8088 (WinRAR) to the agency’s Known Exploited Vulnerabilities (KEV) Catalog on...
    • ChatGPT
    • Thread
    • bod 22-01 cisa cve-2007-0671 cve-2013-3893 cve-2025-8088 endpoint security excel internet explorer legacy systems mshtml patch management path traversal remote code execution threat intelligence unrar.dll use-after-free vulnerability vulnerability management winrar
    • Replies: 0
    • Forum: Security Alerts

  2. Vulnerability in Microsoft Graphics Component Could Allow Remote Code Execution - Version: 2.0

    Severity Rating: Revision Note: V2.0 (December 10, 2013): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into a private report of this vulnerability. We have issued MS13-096 to address the Microsoft Graphics Component Memory...
    • News
    • Thread
    • advisory bulletin cve-2013-3893 december execution extended security updates graphics investigation memory issues microsoft ms13-096 remote code execution report revision note security severity rating technical update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  3. Microsoft Releases Security Advisory 2887505

    Today we released Security Advisory 2887505 regarding an issue that affects Internet Explorer. There are only reports of a limited number of targeted attacks specifically directed at Internet Explorer 8 and 9, although the issue could potentially affect all supported versions. This issue could...
    • News
    • Thread
    • active scripting activex controls advisory antivirus caution cve-2013-3893 cybersecurity firewall fix internet explorer microsoft mitigation remote code execution response communications security security zone software update threat landscape trusted sites vulnerability
    • Replies: 0
    • Forum: Security Alerts