Lucene search

[email protected]CVE-2015-2484

HistorySep 09, 2015 - 12:59 a.m.

CVE-2015-2484

2015-09-0900:59:02

CWE-264

[email protected]

web.nvd.nist.gov

cve-2015-2484

microsoft

internet explorer

tampering vulnerability

remote attack

file deletion

nvd

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.7%

JSON

Microsoft Internet Explorer 10 and 11 uses an incorrect flag during certain filesystem accesses, which allows remote attackers to delete arbitrary files via unspecified vectors, aka “Tampering Vulnerability.”

Affected configurations

NVD

Node

microsoftinternet_explorerMatch10

microsoftinternet_explorerMatch11-

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq10
microsoft:internet_explorermicrosoft internet explorereq11

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	10
microsoft:internet_explorer	microsoft internet explorer	eq	11

References

www.securityfocus.com/bid/76586

www.securitytracker.com/id/1033487

docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-094

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.7%

JSON

Related for CVE-2015-2484

checkpoint_advisories1 nvd1 symantec1 prion1 cvelist1 kaspersky1 openvas1 nessus1 securityvulns1