CVE-2013-3900

Microsoft WinVerifyTrust function Remote Code Execution

A remote code execution vulnerability exists in the way that the WinVerifyTrust function handles Windows Authenticode signature verification for PE files. Vendor/Product: Microsoft WinVerifyTrust function. Added to CISA KEV 2022-01-10; required action: Apply updates per vendor instructions.

Category: Vulnerability, Known Exploited

Reference: NVD CVE-2013-3900