CVE-2013-5065 | Vulnerability Database | Aqua Security

NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in November 2013.

Affected Software

Name	Vendor	Start Version	End Version
Windows_2003_server	Microsoft	–sp2 (including)	–sp2 (including)
Windows_xp	Microsoft	–sp2 (including)	–sp2 (including)
Windows_xp	Microsoft	–sp3 (including)	–sp3 (including)

References

http://technet.microsoft.com/security/advisory/2914486
http://www.fireeye.com/blog/technical/cyber-exploits/2013/11/ms-windows-local-privilege-escalation-zero-day-in-the-wild.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-002
https://www.exploit-db.com/exploits/37732/
http://technet.microsoft.com/security/advisory/2914486
http://www.fireeye.com/blog/technical/cyber-exploits/2013/11/ms-windows-local-privilege-escalation-zero-day-in-the-wild.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-002
https://www.exploit-db.com/exploits/37732/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-5065

NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-5065
CWE	https://cwe.mitre.org/data/definitions/.html