High severity8.8CISA KEVNVD Advisory· Published May 5, 2013· Updated Apr 22, 2026
CVE-2013-1347
CVE-2013-1347
Description
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly allocated or (2) is deleted, as exploited in the wild in May 2013.
Affected products
1- cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- technet.microsoft.com/security/advisory/2847140nvdMitigationPatchVendor Advisory
- docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-038nvdPatchVendor Advisory
- www.exploit-db.com/exploits/25294nvdExploitThird Party AdvisoryVDB Entry
- www.us-cert.gov/ncas/alerts/TA13-134AnvdThird Party AdvisoryUS Government Resource
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16727nvdBroken Link
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
0No linked articles in our index yet.