Lucene search

[email protected]CVE-2015-2389

HistoryJul 14, 2015 - 9:59 p.m.

CVE-2015-2389

2015-07-1421:59:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2015-2389

microsoft

internet explorer

remote code execution

memory corruption

nvd

7.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.764 High

EPSS

Percentile

98.2%

JSON

Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Internet Explorer Memory Corruption Vulnerability,” a different vulnerability than CVE-2015-1733 and CVE-2015-2411.

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq10
microsoft:internet_explorermicrosoft internet explorereq11

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	10
microsoft:internet_explorer	microsoft internet explorer	eq	11

References

www.securitytracker.com/id/1032894

docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-065

7.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.764 High

EPSS

Percentile

98.2%

JSON

Related for CVE-2015-2389

prion3 cve2 cvelist3 symantec3 checkpoint_advisories3 openvas1 mskb1 kaspersky1 nessus1 securityvulns1