Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-6055

Опубликовано: 14 окт. 2015
Источник: nvd
CVSS2: 9.3
EPSS Средний

Описание

The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Filter arguments, aka "Scripting Engine Memory Corruption Vulnerability."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:microsoft:jscript:5.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:jscript:5.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:jscript:5.8:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:vbscript:5.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:vbscript:5.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:vbscript:5.8:*:*:*:*:*:*:*

Одно из

cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:11:-:*:*:*:*:*:*

EPSS

Процентиль: 97%
0.44437
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

github логотип

GHSA-c2qw-hpjg-mph4

github
больше 3 лет назад

The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Filter arguments, aka "Scripting Engine Memory Corruption Vulnerability."

EPSS

Процентиль: 97%
0.44437
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119