Navigation section
ms13-090
About this tag
MS13-090 is a critical security bulletin from Microsoft, released on November 12, 2013, addressing a privately reported vulnerability in the InformationCardSigninHelper Class ActiveX control. This vulnerability could allow remote code execution if a user views a specially crafted webpage with Internet Explorer that instantiates the ActiveX control. The update is part of the Cumulative Security Update of ActiveX Kill Bits (2900986). Users with fewer user rights on the system may be less impacted than those with administrative rights. The bulletin notes that the vulnerability was being actively exploited at the time of release.
-
MS13-090 - Critical : Cumulative Security Update of ActiveX Kill Bits (2900986) - Version: 1.0
Severity Rating: Critical Revision Note: V1.0 (November 12, 2013): Bulletin published. Summary: This security update resolves a privately reported vulnerability that is currently being exploited. The vulnerability exists in the InformationCardSigninHelper Class ActiveX control. The vulnerability...- News
- Thread
- activex critical cumulative informationcardsigninhelper internet explorer ms13-090 remote code execution security update vulnerability
- Replies: 0
- Forum: Security Alerts
-
MS13-090 - Critical : Cumulative Security Update of ActiveX Kill Bits (2900986) - Version: 1.0
Severity Rating: Critical Revision Note: V1.0 (November 12, 2013): Bulletin published. Summary: This security update resolves a privately reported vulnerability that is currently being exploited. The vulnerability exists in the InformationCardSigninHelper Class ActiveX control. The vulnerability...- News
- Thread
- activex critical execution internet explorer ms13-090 remote code execution security update user rights vulnerability
- Replies: 0
- Forum: Security Alerts