CVE CVE-2013-3893 Mappings

Use-after-free vulnerability in the SetMouseCapture implementation in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code via crafted JavaScript strings, as demonstrated by use of an ms-help: URL that triggers loading of hxds.dll.


Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2013-3893 n/a uncategorized T1202 Indirect Command Execution
CVE-2013-3893 n/a uncategorized T1059 Command and Scripting Interpreter
CVE-2013-3893 n/a uncategorized T1203 Exploitation for Client Execution