9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.975 High
EPSS
Percentile
100.0%
Name | ie_cmarkup |
---|---|
CVE | CVE-2014-0322 Exploit Pack |
VENDOR: Microsoft | |
NOTES: | |
- This exploits leaks a vtable pointer of a mshtml object in order to bypass ASLR | |
- We also leak the shellcode’s address so there’s no need for spraying the shellcode |
This exploit has been tested on:
- Windows 7 Professional (x86) SP 1 on IE 10
- Windows 7 Enterprise (x86) SP 1 on IE 10
The following mshtml versions are vulnerables and has been tested:
- 10.00.9200.16521
Repeatability: Single
References: URL:http://technet.microsoft.com/security/bulletin/MS14-012
CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0322