Guru3D.com Forums

Go Back   Guru3D.com Forums > General > General Software and Applications
General Software and Applications Trouble with software/DirectX or other programs like Detonator Destroyer.


Reply
 
Thread Tools Display Modes
CVE-2013-3893 entry in Program and Features control panel - What is it?
Old
  (#1)
Darren Hodgson
Ancient Guru
 
Darren Hodgson's Avatar
 
Videocard: EVGA NVIDIA GTX 980 SC
Processor: Intel Core i7-4770K
Mainboard: ASUS Z87 Deluxe v2103
Memory: 16GB Corsair Veng 1600MHz
Soundcard: SB X-Fi Titanium HD
PSU: XFX PRO Black Ed. 850W
Default CVE-2013-3893 entry in Program and Features control panel - What is it? - 10-16-2013, 09:24 | posts: 12,213 | Location: England

I was just looking through CCleaner's Uninstall section and I noticed a single entry for CVE-2013-3893 with no publisher or version number. It was installed on 5th October 2013, the same day I updated from Windows 8 Pro to Windows 8.1 Pro.

What is this?

Is it a virus (and, if so, then why would it leave an uninstall entry)? If it's a legit Windows application that why does it look so suspicious? I've ran both Windows Defender and Malwarebytes' Anti-Malware and neither report anything out of the ordinary.

Do I have a virus or not?
   
Reply With Quote
 
Old
  (#2)
sverek
Maha Guru
 
sverek's Avatar
 
Videocard: HD7850
Processor: i5 2500k
Mainboard: P8Z68-V
Memory: Corsair Ven. 8GB
Soundcard: Xonar DG
PSU: Corsair HX850
Default 10-16-2013, 09:38 | posts: 1,422 | Location: Japan, Soka

Might be wrong, but looks like JS exploit:
http://community.websense.com/blogs/...-reported.aspx


   
Reply With Quote
Old
  (#3)
Darren Hodgson
Ancient Guru
 
Darren Hodgson's Avatar
 
Videocard: EVGA NVIDIA GTX 980 SC
Processor: Intel Core i7-4770K
Mainboard: ASUS Z87 Deluxe v2103
Memory: 16GB Corsair Veng 1600MHz
Soundcard: SB X-Fi Titanium HD
PSU: XFX PRO Black Ed. 850W
Default 10-16-2013, 09:42 | posts: 12,213 | Location: England

I found this: http://www.hawaii.edu/technews/notice.php?id=252743

I've Googled this but I can find no mention of an entry in Program and Features and I do not have KB2879017 installed either as mentioned in that link. I'm confused as to whether this is an official fix by Microsoft, in which case why does it look so suspicious, or whether it is in fact something malicious, in which case why did it create a control panel entry that makes it so obvious. I guess the good news is that I use Firefox for browsing not IE.

Should I uninstall it or would that trigger whatever it is?

HELP!

Does anyone else have this entry, simply listed as 'CVE-2013-3893' under Programs and Features?

Last edited by Darren Hodgson; 10-16-2013 at 09:44.
   
Reply With Quote
Old
  (#4)
Darren Hodgson
Ancient Guru
 
Darren Hodgson's Avatar
 
Videocard: EVGA NVIDIA GTX 980 SC
Processor: Intel Core i7-4770K
Mainboard: ASUS Z87 Deluxe v2103
Memory: 16GB Corsair Veng 1600MHz
Soundcard: SB X-Fi Titanium HD
PSU: XFX PRO Black Ed. 850W
Default 10-16-2013, 09:48 | posts: 12,213 | Location: England

It seems this is the Windows Update fix to address CVE-2013-3893: http://www.microsoft.com/en-us/downl....aspx?id=40716

I downloaded it but when I ran it I was told that it was already installed. So is that what the CVE-2013-3893 entry refers to, i.e. it is the hotfix because I cannot see it listed under Installed Updates or in the Windows Update history?

*EDIT*
It is listed under Windows Update's history and was installed on 9th October 2013 which is after the CVE-2013-3893 entry I have under Program and Features.
   
Reply With Quote
 
Old
  (#5)
Darren Hodgson
Ancient Guru
 
Darren Hodgson's Avatar
 
Videocard: EVGA NVIDIA GTX 980 SC
Processor: Intel Core i7-4770K
Mainboard: ASUS Z87 Deluxe v2103
Memory: 16GB Corsair Veng 1600MHz
Soundcard: SB X-Fi Titanium HD
PSU: XFX PRO Black Ed. 850W
Default 10-16-2013, 15:08 | posts: 12,213 | Location: England

AStaley found out what this was.

It's apparently an entry created by a Microsoft Fixit, specifically 51001, to address the IE exploit called CVE-2013-3893. Of course, if they'd bothered to make the Programs and Features entry a bit more obvious - "Microsoft Fixit 51001 for CVE-2013-3893', publisher: Microsoft, etc, etc. - then I'd wouldn't have had to waste mine and others' time trying to find out what it was.

I do not even recall running the Microsoft Fixit to be honest. Anyway, on the off-chance that someone else comes across the same issue I've posted this. To remove this entry, you need only run Microsoft Fixit 51002 as explained here: http://blogs.technet.com/b/srd/archi...available.aspx
   
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump



Powered by vBulletin®
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
vBulletin Skin developed by: vBStyles.com
Copyright (c) 1995-2014, All Rights Reserved. The Guru of 3D, the Hardware Guru, and 3D Guru are trademarks owned by Hilbert Hagedoorn.