ゼットスケーラーのセキュリティアドバイザリ

セキュリティ アドバイザリー - June 11, 2013

Zscaler Protects Against Memory Corruption in Internet Explorer and Buffer Overflow in Microsoft Office

  1. Overview
  2. CVE-2013-1331 – Office Buffer Overflow Vulnerability

Zscaler, working with Microsoft through their MAPPs program has proactively deployed protections for the following 16 vulnerabilities included in the June 2013 Microsoft security bulletins.  Zscaler will continue to monitor exploits associated with all vulnerabilities in the June release and deploy additional protections as necessary.

MS13-047Cumulative Security Update for Internet Explorer

Severity: Critical

Affected Software

  • Internet Explorer 6-10

CVE-2013-3110 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3111 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3112 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3114 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3116 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3117 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3118 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3119 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3120 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3121 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3122 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3123 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3124 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3125 – Internet Explorer Memory Corruption Vulnerability

CVE-2013-3142 – Internet Explorer Memory Corruption Vulnerability

Description: Remote code execution vulnerabilities exist in the way that Internet Explorer accesses an object in memory that has been deleted. These vulnerabilities may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.  They may also provide unique information disclosure scenarios that could render the user exposed to future attacks.

MS13-051Vulnerability in Office Could Allow Remote Code Execution

Severity: Important

Affected Software

  • Microsoft Office 2003

CVE-2013-1331 – Office Buffer Overflow Vulnerability

Description: A remote code execution vulnerability exists in the way that Microsoft Office parses specially crafted Office files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.