Unrated severityNVD Advisory· Published Dec 11, 2013· Updated Apr 29, 2026

CVE-2013-5045

Description

Microsoft Internet Explorer 10 and 11 allows local users to bypass the Protected Mode protection mechanism, and consequently gain privileges, by leveraging the ability to execute sandboxed code, aka "Internet Explorer Elevation of Privilege Vulnerability."

Affected products

Microsoft/Internet Explorer2 versions
cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:11:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/127245/MS13-097-Registry-Symlink-IE-Sandbox-Escape.htmlnvdExploitVDB Entry
www.exploit-db.com/exploits/33893nvd
www.osvdb.org/100757nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-097nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.019
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000