Lucene search

[email protected]CVE-2014-0278

HistoryFeb 12, 2014 - 4:50 a.m.

CVE-2014-0278

2014-02-1204:50:40

CWE-119

[email protected]

web.nvd.nist.gov

117

cve-2014-0278

internet explorer

memory corruption

remote code execution

web vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.842 High

EPSS

Percentile

98.5%

JSON

Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Internet Explorer Memory Corruption Vulnerability,” a different vulnerability than CVE-2014-0277 and CVE-2014-0279.

Affected configurations

NVD

Node

microsoftinternet_explorerMatch8

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq8

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	8

References

osvdb.org/103177

secunia.com/advisories/56796

www.securityfocus.com/bid/65377

www.securitytracker.com/id/1029741

docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-010

exchange.xforce.ibmcloud.com/vulnerabilities/90768

Social References

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.842 High

EPSS

Percentile

98.5%

JSON

Related for CVE-2014-0278

cve2 prion3 nvd3 cvelist3 checkpoint_advisories3 symantec3 zdi1 seebug1 securityvulns1 openvas1 nessus1 kaspersky1