High severity7.8CISA KEVNVD Advisory· Published Nov 28, 2013· Updated Jun 16, 2026
CVE-2013-5065
CVE-2013-5065
Description
NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in November 2013.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:o:microsoft:windows_2003_server:-:sp2:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_2003_server:-:sp2:*:*:*:*:*:*
- (no CPE)range: SP2
cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:*:*+ 2 more
- cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:*:*
- cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*
- (no CPE)range: SP2; SP3
Patches
Vulnerability mechanics
References
5- technet.microsoft.com/security/advisory/2914486nvdPatchVendor Advisory
- docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-002nvdPatchVendor Advisory
- www.exploit-db.com/exploits/37732/nvdExploitThird Party AdvisoryVDB Entry
- www.fireeye.com/blog/technical/cyber-exploits/2013/11/ms-windows-local-privilege-escalation-zero-day-in-the-wild.htmlnvdBroken LinkNot Applicable
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
0No linked articles in our index yet.