Unrated severityNVD Advisory· Published Aug 28, 2013· Updated Apr 29, 2026

CVE-2013-3582

Description

Buffer overflow in Dell BIOS on Dell Latitude D###, E####, XT2, and Z600 devices, and Dell Precision M#### devices, allows local users to bypass intended BIOS signing requirements and install arbitrary BIOS images by leveraging administrative privileges and providing a crafted rbu_packet.pktNum value in conjunction with a crafted rbu_packet.pktSize value.

Affected products

Dell/Latitude D530
cpe:2.3:h:dell:latitude_d530:-:*:*:*:*:*:*:*
Dell/Latitude D531
cpe:2.3:h:dell:latitude_d531:-:*:*:*:*:*:*:*
Dell/Latitude D630
cpe:2.3:h:dell:latitude_d630:-:*:*:*:*:*:*:*
Dell/Latitude D631
cpe:2.3:h:dell:latitude_d631:-:*:*:*:*:*:*:*
Dell/Latitude D830
cpe:2.3:h:dell:latitude_d830:-:*:*:*:*:*:*:*
Dell/Latitude E4200
cpe:2.3:h:dell:latitude_e4200:-:*:*:*:*:*:*:*
Dell/Latitude E4300
cpe:2.3:h:dell:latitude_e4300:-:*:*:*:*:*:*:*
Dell/Latitude E5400
cpe:2.3:h:dell:latitude_e5400:-:*:*:*:*:*:*:*
Dell/Latitude E5500
cpe:2.3:h:dell:latitude_e5500:-:*:*:*:*:*:*:*
Dell/Latitude E6400
cpe:2.3:h:dell:latitude_e6400:-:*:*:*:*:*:*:*
Dell/Latitude E6400 Atg
cpe:2.3:h:dell:latitude_e6400_atg:-:*:*:*:*:*:*:*
Dell/Latitude E6400 Atg Xfr
cpe:2.3:h:dell:latitude_e6400_atg_xfr:-:*:*:*:*:*:*:*
Dell/Latitude E6500
cpe:2.3:h:dell:latitude_e6500:-:*:*:*:*:*:*:*
Dell/Latitude Xt2
cpe:2.3:h:dell:latitude_xt2:-:*:*:*:*:*:*:*
Dell/Latitude Z600
cpe:2.3:h:dell:latitude_z600:-:*:*:*:*:*:*:*
Dell/Precision M2300
cpe:2.3:h:dell:precision_m2300:-:*:*:*:*:*:*:*
Dell/Precision M2400
cpe:2.3:h:dell:precision_m2400:-:*:*:*:*:*:*:*
Dell/Precision M4300
cpe:2.3:h:dell:precision_m4300:-:*:*:*:*:*:*:*
Dell/Precision M4400
cpe:2.3:h:dell:precision_m4400:-:*:*:*:*:*:*:*
Dell/Precision M6300
cpe:2.3:h:dell:precision_m6300:-:*:*:*:*:*:*:*
Dell/Precision M6400
cpe:2.3:h:dell:precision_m6400:-:*:*:*:*:*:*:*
Dell/Precision M6500
cpe:2.3:h:dell:precision_m6500:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

media.blackhat.com/us-13/US-13-Butterworth-BIOS-Security-Slides.pdfnvdExploit
media.blackhat.com/us-13/US-13-Butterworth-BIOS-Security-WP.pdfnvdExploit
www.kb.cert.org/vuls/id/912156nvdUS Government Resource
www.kb.cert.org/vuls/id/BLUU-99HSLAnvdUS Government Resource
www.blackhat.com/us-13/archives.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000