Security Advisory - July 09, 2013

Zscaler Protects Against Memory Corruption Vulnerability in Internet Explorer

 

 

Zscaler, working with Microsoft through their MAPPs program has proactively deployed protections for the following 13 vulnerabilities included in the July 2013 Microsoft security bulletins.  Zscaler will continue to monitor exploits associated with all vulnerabilities in the July release and deploy additional protections as necessary.

MS13-055Multiple Memory Corruption Vulnerabilities in Internet Explorer
Severity: Critical
Affected Software

  • Internet Explorer 6-10

CVE-2013-3115 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3143 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3144 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3145 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3146 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3147 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3148 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3150 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3151 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3152 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3153 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3163 – Internet Explorer Memory Corruption Vulnerability
CVE-2013-3164 – Internet Explorer Memory Corruption Vulnerability

Description: Remote code execution vulnerabilities exist in the way that Internet Explorer accesses an object in memory that has been deleted. These vulnerabilities may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.  They may also provide unique information disclosure scenarios that could render the user exposed to future attacks.