CVE-2014-4132

Опубликовано: 15 окт. 2014

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-4130 and CVE-2014-4138.

Ссылки

http://secunia.com/advisories/60968
http://www.securityfocus.com/bid/70334
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1031018
Third Party Advisory
VDB Entry
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-056
https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1077
Third Party Advisory
VDB Entry
http://secunia.com/advisories/60968
http://www.securityfocus.com/bid/70334
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1031018
Third Party Advisory
VDB Entry
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-056
https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1077
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:internet_explorer:11:-:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.14058

Средний

9.3 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-wh5r-m2hg-jcv2

github

больше 3 лет назад

BDU:2015-00487

fstec

больше 11 лет назад

Уязвимости браузера Internet Explorer, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации