CVE-2013-4015

Microsoft Internet Explorer 6-10 - Local Privilege Escalation via Sandboxed Code Execution

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-4015. PoCs published by Metasploit.

AI-analyzed exploit summary This is a functional Metasploit exploit for CVE-2013-3161, targeting a use-after-free vulnerability in Microsoft Internet Explorer 8. It leverages a malformed table structure to trigger the vulnerability and includes ROP chains for both Windows XP and Windows 7.

Description

Microsoft Internet Explorer 6 through 10 allows local users to bypass the elevation policy check in the (1) Protected Mode or (2) Enhanced Protected Mode protection mechanism, and consequently gain privileges, by leveraging the ability to execute sandboxed code.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/28187

This is a functional Metasploit exploit for CVE-2013-3161, targeting a use-after-free vulnerability in Microsoft Internet Explorer 8. It leverages a malformed table structure to trigger the vulnerability and includes ROP chains for both Windows XP and Windows 7.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Microsoft Internet Explorer 8
No auth needed
Prerequisites: Victim must be using Internet Explorer 8 · Victim must visit a malicious webpage
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/85762

Scores

EPSS 0.0282
EPSS Percentile 84.7%

Details

CWE
CWE-264
Status published
Products (5)
microsoft/internet_explorer 6
microsoft/internet_explorer 7
microsoft/internet_explorer 8
microsoft/internet_explorer 9
microsoft/internet_explorer 10
Published Jul 26, 2013
Tracked Since Feb 18, 2026