Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-8967
HistoryDec 15, 2014 - 6:59 p.m.

CVE-2014-8967

2014-12-1518:59:19
[email protected]
web.nvd.nist.gov
29
cve-2014-8967
internet explorer
vulnerability
remote code execution
html
css

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

Low

0.055 Low

EPSS

Percentile

93.2%

JSON

Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute arbitrary code via a crafted HTML document in conjunction with a Cascading Style Sheets (CSS) token sequence specifying the run-in value for the display property, leading to improper CElement reference counting.

Affected configurations

NVD
Node
microsoftinternet_explorerMatch-

Related

checkpoint_advisories 1
prion 3
zdt 1
nvd 3
symantec 1
thn 1
zdi 1
cvelist 3
cve 2
openvas 1
mskb 1
kaspersky 1
nessus 1
securityvulns 1
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Use After Free Remote Code Execution (CVE-2014-8967)
2014-12-11 00:00:00
prion
prion
Design/Logic Flaw
2014-12-15 18:59:00
Memory corruption
2015-02-11 03:00:00
Memory corruption
2015-02-11 03:00:00
zdt
zdt
Microsoft Internet Explorer display:run-in Use-After-Free Remote Code Execution 0day Exploit
2014-12-05 00:00:00
nvd
nvd
CVE-2014-8967
2014-12-15 18:59:19
CVE-2015-0044
2015-02-11 03:00:52
CVE-2015-0050
2015-02-11 03:00:56
symantec
symantec
Microsoft Internet Explorer CVE-2014-8967 Use After Free Remote Code Execution Vulnerability
2014-12-04 00:00:00
thn
thn
Microsoft Releases 7 Security Updates
2014-12-09 05:08:00
zdi
zdi
(0Day) Microsoft Internet Explorer display:run-in Use-After-Free Remote Code Execution Vulnerability
2014-12-04 00:00:00
cvelist
cvelist
CVE-2014-8967
2014-12-15 17:27:00
CVE-2015-0044
2015-02-11 02:00:00
CVE-2015-0050
2015-02-11 02:00:00
cve
cve
CVE-2015-0044
2015-02-11 03:00:52
CVE-2015-0050
2015-02-11 03:00:56
openvas
openvas
Microsoft Internet Explorer Multiple Memory Corruption Vulnerabilities (3034682)
2015-02-11 00:00:00
mskb
mskb
MS15-009: Cumulative security update for Internet Explorer: February 10, 2015
2015-02-10 00:00:00
kaspersky
kaspersky
KLA10475 Code execution vulnerability in Internet Explorer
2015-02-10 00:00:00
nessus
nessus
MS15-009: Security Update for Internet Explorer (3034682)
2015-06-05 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2015-02-11 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

Low

0.055 Low

EPSS

Percentile

93.2%

JSON
Related for CVE-2014-8967
checkpoint_advisories1prion3zdt1nvd3symantec1thn1zdi1cvelist3cve2openvas1mskb1kaspersky1nessus1securityvulns1