Lucene search

[email protected]CVE-2014-1785

HistoryJun 11, 2014 - 4:56 a.m.

CVE-2014-1785

2014-06-1104:56:17

CWE-119

[email protected]

web.nvd.nist.gov

cve-2014-1785

internet explorer

remote code execution

memory corruption

vulnerability

7.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.81 High

EPSS

Percentile

98.4%

JSON

Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Internet Explorer Memory Corruption Vulnerability,” a different vulnerability than CVE-2014-1769, CVE-2014-1782, CVE-2014-2753, CVE-2014-2755, CVE-2014-2760, CVE-2014-2761, CVE-2014-2772, and CVE-2014-2776.

Affected configurations

NVD

Node

microsoftinternet_explorerMatch11

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq11

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	11

References

blog.skylined.nl/20161220001.html

packetstormsecurity.com/files/140233/Microsoft-Internet-Explorer-11-MSHTML-CSpliceTreeEngine-RemoveSplice-Use-After-Free.html

www.securityfocus.com/bid/67878

www.securitytracker.com/id/1030370

docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-035

www.exploit-db.com/exploits/40946/

7.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.81 High

EPSS

Percentile

98.4%

JSON

Related for CVE-2014-1785

prion9 nvd9 cvelist9 cve8 symantec9 zdi7 zdt1 checkpoint_advisories1 mskb1 nessus1 openvas1 kaspersky1 securityvulns1