CVE-2013-0096 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2013-0096

CWE

https://cwe.mitre.org/data/definitions/264.html

Writer in Microsoft Windows Essentials 2011 and 2012 allows remote attackers to bypass proxy settings and overwrite arbitrary files via crafted URL parameters, aka Windows Essentials Improper URI Handling Vulnerability.

Affected Software

Name	Vendor	Start Version	End Version
Windows_essentials	Microsoft	2011 (including)	2011 (including)
Windows_essentials	Microsoft	2012 (including)	2012 (including)

References

http://www.us-cert.gov/ncas/alerts/TA13-134A
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-045
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16204
http://www.us-cert.gov/ncas/alerts/TA13-134A
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-045
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16204