NVD disclosure day

Published threat advisories for October 9, 2013

CVE advisoryKnown Exploit

CVE-2013-3897

Internet Explorer Memory Corruption Vulnerability.

Halo Surface Signal: 3 out of 5 — possibly public-facing.

A memory corruption vulnerability in Microsoft Internet Explorer can allow attackers to execute arbitrary code or cause denial of service. This risk arises when users visit a malicious website, potentially impacting affected organizations and their employees.

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2013-3896

Microsoft Silverlight Information Disclosure Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in Microsoft Silverlight could allow attackers to obtain sensitive information. This impacts organizations using the affected product, potentially exposing data. The risk to business operations is heightened as the product is end-of-life and should be disconnected.

NVD published: • CISA KEV