CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2013-3946

Malware in sbrugna...

6.9CVSS6.4AI score0.04416EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-4331

Malware in sbrugna...

5.3CVSS7.3AI score0.04266EPSS

Exploits0References3

Packet Storm•added 2020/09/11 12:0 a.m.•644 views

Microsoft Internet Explorer 11 Use-After-Free

Exploit Title: Internet Explorer 11 - Use-After-Free Google Dork: if applicable Date: 2020-09-06 Exploit Author: Tgroup Vendor Homepage: Microsoft.com Version: IE 11 REQUIRED Tested on: Windows 7 x64 CVE : CVE-2020-0674 //...

7.6CVSS8.1AI score0.93638EPSS

Exploits17

0day.today•added 2017/12/19 12:0 a.m.•56 views

Microsoft Windows jscript!RegExpComp::Compile Heap Overflow Exploit

There is a heap overflow in jscript.dll when compiling a regex. This issue could potentially be exploited through multiple vectors. Windows: Heap overflow in jscript!RegExpComp::Compile through IE or local network via WPAD CVE-2017-11890 There is a heap overflow in jscript.dll when compiling a...

7.6CVSS7.9AI score0.5941EPSS

Exploits4

Zero Day Initiative•added 2017/07/12 12:0 a.m.•31 views

Adobe Flash BrokerCreateFile Broker Method Information Disclosure Vulnerability

This vulnerability allows remote attackers to bypass the Enhanced Protected Mode sandbox of vulnerable installations of Adobe Flash Player and disclose file contents. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file...

4.7CVSS2AI score0.03837EPSS

Exploits0References1

Zero Day Initiative•added 2016/09/16 12:0 a.m.•35 views

Microsoft Internet Explorer Add-on Installer Enhanced Protected Mode Sandbox Escape Vulnerability

This vulnerability allows attackers to escape from the Enhanced Protected Mode sandbox on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

6.9CVSS1.7AI score0.06099EPSS

Exploits0References1

OSV•added 2016/08/09 9:59 p.m.•4 views

CVE-2016-3299

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow remote attackers to hijack network traffic or bypass intended Enhanced Protected Mode EPM or application container...

5.3CVSS5.8AI score0.04266EPSS

Exploits0References2

Zero Day Initiative•added 2016/05/10 12:0 a.m.•39 views

Microsoft Internet Explorer Add-on Installer Enhanced Protected Mode Information Disclosure Vulnerability

This vulnerability allows remote attackers to bypass the Enhanced Protected Mode sandbox of vulnerable installations of Microsoft Internet Explorer and disclose file contents. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

4.7CVSS1.8AI score0.00907EPSS

Exploits0References1

Zero Day Initiative•added 2015/08/10 12:0 a.m.•47 views

Microsoft Internet Explorer add-on Installer Sandbox Escape Vulnerability

This vulnerability allows remote attackers to escape Enhanced Protected Mode on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

6.9CVSS6.4AI score0.09823EPSS

Exploits1References1

Zero Day Initiative•added 2015/07/20 12:0 a.m.•25 views

Microsoft Internet Explorer EditWith Broker API Sandbox Escape Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer running in either Protected Mode or Enhanced Protected Mode. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...

4.6CVSS6.6AI score0.079EPSS

Exploits0References1

Zero Day Initiative•added 2015/07/14 12:0 a.m.•39 views

Microsoft Internet Explorer Enhanced Protected Mode Read-Restrictions Bypass Vulnerability

This vulnerability allows remote attackers to partially escape AppContainer limitations on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

4.7CVSS5.9AI score0.255EPSS

Exploits0References1

Hacker One•added 2015/05/12 7:27 p.m.•41 views

Sandbox Escape: Internet Explorer Enhanced Protected Mode sandbox escape via a broker vulnerability

Internet Explorer Enhanced Protected Mode sandbox escape via a broker vulnerability =================================================================================== Full source code demonstrating the escape from IE's sandbox -- by launching a medium-integrity calc at login -- is attached with...

7.1AI score

Exploits0

ThreatPost•added 2014/08/08 11:55 a.m.•100 views

IE to Block Older ActiveX Controls, Starting with Java

Next week’s Microsoft Patch Tuesday security bulletins will not only bring nine new security bulletins but also an update to Internet Explorer that blocks outdated ActiveX controls, starting with Java. Notifications will flag the older ActiveX controls and users will have the option to update the...

9.3CVSS8.8AI score0.94354EPSS

Exploits33References2

seebug.org•added 2014/07/01 12:0 a.m.•34 views

MS13-097 Registry Symlink IE Sandbox Escape

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' require 'msf/core/exploit/exe' require 'msf/core/exploit/powershell' class Metasploit3...

6.2CVSS0.1AI score0.24226EPSS

Exploits6

Packet Storm•added 2014/06/27 12:0 a.m.•59 views

MS14-009 .NET Deployment Service IE Sandbox Escape

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' require 'msf/core/exploit/exe' require 'msf/core/exploit/powershell' class Metasploit3 'dfsvc' = '4.0.30319.17929.17', 'mscorlib' =...

9.3CVSS0.1AI score0.78096EPSS

Exploits6

0day.today•added 2014/06/27 12:0 a.m.•47 views

MS13-097 Registry Symlink IE Sandbox Escape Exploit

This Metasploit module exploits a vulnerability in Internet Explorer Sandbox which allows to escape the Enhanced Protected Mode and execute code with Medium Integrity. The vulnerability exists in the IESetProtectedModeRegKeyOnly function from the ieframe.dll component, which can be abused to forc...

6.2CVSS6.7AI score0.24226EPSS

Exploits6

Exploit DB•added 2014/06/27 12:0 a.m.•86 views

Microsoft .NET Deployment Service - IE Sandbox Escape (MS14-009) (Metasploit)

9.3CVSS7AI score0.78096EPSS

Exploits6

0day.today•added 2014/06/27 12:0 a.m.•47 views

MS14-009 .NET Deployment Service IE Sandbox Escape Exploit

This Metasploit module abuses a process creation policy in the Internet Explorer Sandbox which allows to escape the Enhanced Protected Mode and execute code with Medium Integrity. The problem exists in the .NET Deployment Service dfsvc.exe, which can be run as Medium Integrity Level. Further...

7.9AI score0.78096EPSS

Exploits6

Packet Storm•added 2014/06/27 12:0 a.m.•41 views

MS13-097 Registry Symlink IE Sandbox Escape

6.2CVSS0.4AI score0.24226EPSS

Exploits6

Exploit DB•added 2014/06/27 12:0 a.m.•46 views

Microsoft Registry Symlink - IE Sandbox Escape (MS13-097) (Metasploit)

6.2CVSS6.4AI score0.24226EPSS

Exploits6

Rows per page