| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS13-045 | Vulnerability in Windows Essentials Could Allow Information Disclosure (2813707) | Windows Essentials | Important | 15-05-2013 |
Technical Information
Brief overview of the risk:
The vulnerability could allow information disclosure if a user opens Windows Writer using a specially crafted URL. An attacker who successfully exploited the vulnerability could override Windows Writer proxy settings and overwrite files accessible to the user on the target system.
Detailed Information on the risk:
An information disclosure vulnerability exists when Windows Writer fails to properly handle a specially crafted URL. An attacker who successfully exploited the vulnerability could override Windows Writer proxy settings and overwrite files accessible to the user on the target system.
Further information on this exploit is available at : MS13-045
Affected Software
Windows Essentials 2011Windows Essentials 2012