424 matches found
Microsoft VBScript and JScript CVE-2015-2482 Remote Memory Corruption Vulnerability
Description Microsoft VBScript and JScript are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently...
Microsoft VBScript and JScript CVE-2015-6055 Multiple Remote Memory Corruption Vulnerabilities
Description Microsoft VBScript and JScript are prone to multiple remote memory-corruption vulnerabilities. Attackers can exploit these issues by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit these issues to execute arbitrary code in the context of the...
KLA10676 Multiple vulnerabilities in Microsoft JScript and VBScript
Multiple serious vulnerabilities have been found in Microsoft JScript and VBScript. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improperly handling objects...
CVE-2015-2493
The 1 VBScript and 2 JScript engines in Microsoft Internet Explorer 8 allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."...
Memory corruption
The 1 VBScript and 2 JScript engines in Microsoft Internet Explorer 8 allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."...
CVE-2015-2493
CVE-2015-2493 affects Microsoft Internet Explorer (IE) engines VBScript and JScript in IE 8 (and IE 7–11 per related advisories). The vulnerability is a memory corruption flaw that can be exploited by a crafted web page to cause remote code execution or, per some sources, memory corruption leadin...
CVE-2015-2493
The 1 VBScript and 2 JScript engines in Microsoft Internet Explorer 8 allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."...
VulnCheck KEV: CVE-2015-2419
JScript in Microsoft Internet Explorer allows remote attackers to execute remote code or cause a denial of service memory corruption via a crafted web site...
CVE-2015-2419
JScript 9 in Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "JScript9 Memory Corruption Vulnerability."...
CVE-2015-2419
CVE-2015-2419 is a JScript 9 vulnerability in Microsoft Internet Explorer (IE10/IE11) that allows remote code execution and memory corruption when processing crafted JSON with JSON.stringify. The CVE is exploited via malicious web content and has been leveraged by loaders in exploit kits (notably...
CVE-2015-2419
JScript 9 in Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "JScript9 Memory Corruption Vulnerability."...
CVE-2015-2419
JScript 9 in Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "JScript9 Memory Corruption Vulnerability."...
PT-2015-1554 · Microsoft · Internet Explorer
Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 10 through 11 Description: The issue is caused by a memory corruption vulnerability in the JScript 9 component of Microsoft Internet Explorer. This vulnerability can be exploited by a remote attacker via a...
CVE-2015-1686
The Microsoft 1 VBScript 5.6 through 5.8 and 2 JScript 5.6 through 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript and JScript ASLR Bypass."...
Security feature bypass
The Microsoft 1 VBScript 5.6 through 5.8 and 2 JScript 5.6 through 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript and JScript ASLR Bypass."...
CVE-2015-1686
CVE-2015-1686 documents an ASLR bypass in Microsoft Internet Explorer's scripting engines: VBScript 5.6–5.8 and JScript 5.6–5.8 used in IE8–IE11 (and related products). The root cause is ASLR bypass capability within these engines when rendering a crafted web page, enabling potential arbitrary co...
CVE-2015-1686
The Microsoft 1 VBScript 5.6 through 5.8 and 2 JScript 5.6 through 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript and JScript ASLR Bypass."...
Microsoft Windows JScript & VBScript Security Bypass Vulnerability (3057263)
This host is missing an important security update according to Microsoft Bulletin MS15-053. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
Microsoft Internet Explorer Memory Corruption (MS15-043: CVE-2015-1686)
A security feature bypass vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to JScript and VBScript engines not using Address Space Layout Randomization ASLR security feature when rendered in Internet Explorer. A remote attacker can exploit this issue by...
Microsoft VBScript and JScript CVE-2015-1686 ASLR Security Bypass Vulnerability
Description Microsoft VBScript and JScript are prone to a security-bypass vulnerability. An attacker can leverage this issue to bypass certain security restrictions and execute arbitrary code by exploiting another vulnerability in the application. Technologies Affected Avaya CallPilot 4.0 Avaya...