CVE-2013-3186

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 7 through 10

Description The Protected Mode feature in Microsoft Internet Explorer does not properly implement the Integrity Access Level protection mechanism. This allows remote attackers to obtain medium-integrity privileges by leveraging access to a low-integrity process. An elevation of privilege issue exists in the way Internet Explorer handles process integrity level assignment in specific cases, which could allow arbitrary code to execute with elevated privileges.

Recommendations For Microsoft Internet Explorer versions 7 through 10, update to a version that properly implements the Integrity Access Level protection mechanism to prevent elevation of privilege attacks.