Lucene search
K

76 matches found

Zero Day Initiative
Zero Day Initiative
added 2014/07/09 12:0 a.m.32 views

Microsoft Internet Explorer Uninitialized Variable Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.20451EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2014/07/09 12:0 a.m.42 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS7.6AI score0.16393EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.49 views

MS14-012 Internet Explorer CMarkup Use-After-Free

No description provided by source. !-- MS14-012 Internet Explorer CMarkup Use-After-Free Vendor Homepage: http://www.microsoft.com Version: IE 10 Date: 2014-03-31 Exploit Author: Jean-Jamil Khalife Tested on: Windows 7 SP1 x64 fr, en Flash versions tested: Adobe Flash Player 12.0.0.70, 12.0.0.77...

9.3CVSS0.3AI score0.85239EPSS
Exploits23
Zero Day Initiative
Zero Day Initiative
added 2014/06/11 12:0 a.m.31 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.19986EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2014/06/11 12:0 a.m.43 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.30292EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2014/05/22 1:57 p.m.31 views

Microsoft Working on Patch for IE 8 Zero Day

UPDATE–Microsoft officials say they’re well aware of the Internet Explorer 8 zero day disclosed Wednesday by the Zero Day Initiative and have been working on a fix for it. However, there’s no stated timeline for releasing that patch. The vulnerability in IE 8 is a use-after-free bug in the way th...

10CVSS0.3AI score0.99945EPSS
Exploits34References4
Prion
Prion
added 2014/05/22 11:14 a.m.20 views

Design/Logic Flaw

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code via crafted JavaScript code that interacts improperly with a CollectGarbage function call on a CMarkup object allocated by the CMarkup::CreateInitialMarkup function...

9.3CVSS8AI score0.34773EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2014/05/22 10:0 a.m.30 views

CVE-2014-1770

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code via crafted JavaScript code that interacts improperly with a CollectGarbage function call on a CMarkup object allocated by the CMarkup::CreateInitialMarkup function...

7.4AI score0.34773EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2014/05/22 12:0 a.m.33 views

Microsoft Internet Explorer 8 CMarkup Use-After-Free Remote Code Execution

The remote host has a version of Microsoft Internet Explorer installed that is affected by a use-after-free remote code execution vulnerability related to the handling of CMarkup objects. %NASLMINLEVEL 999999 @DEPRECATED@ Disabled on 2014/06/12. Deprecated by smbntms14-035.nasl C Tenable Network...

0.3AI score0.34773EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2014/05/21 12:0 a.m.64 views

(0Day) Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.34773EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2014/05/02 12:0 a.m.29 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.24709EPSS
Exploits1References1
NVD
NVD
added 2014/04/27 10:55 a.m.15 views

CVE-2014-1776

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via vectors related to the CMarkup::IsConnectedToPrimaryMarkup function, as exploited in the wild in April 2014. NOTE: this iss...

10CVSS7.6AI score0.88013EPSS
Exploits1References13
Prion
Prion
added 2014/04/27 10:55 a.m.26 views

Memory corruption

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via vectors related to the CMarkup::IsConnectedToPrimaryMarkup function, as exploited in the wild in April 2014. NOTE: this iss...

10CVSS8.2AI score0.88013EPSS
Exploits1References10Affected Software1
CVE
CVE
added 2014/04/27 10:0 a.m.1040 views

CVE-2014-1776

CVE-2014-1776 is a memory‑safety flaw in Microsoft Internet Explorer (versions 6–11) described as a use‑after‑free in CMarkup::IsConnectedToPrimaryMarkup. Exploitation leads to remote code execution or memory corruption, with evidence of in‑the‑wild activity in April 2014. The vulnerability affec...

10CVSS9.4AI score0.88013EPSS
In wildExploits1References13Affected Software1
Positive Technologies
Positive Technologies
added 2014/04/27 12:0 a.m.1 views

PT-2014-1076 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 through 11 Description: The issue is a use-after-free vulnerability that allows remote attackers to execute arbitrary code or cause a denial of service via vectors related to the...

10CVSS9.5AI score0.88013EPSS
Exploits1References24
ATTACKERKB
ATTACKERKB
added 2014/04/27 12:0 a.m.25 views

CVE-2014-1776

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via vectors related to the CMarkup::IsConnectedToPrimaryMarkup function, as exploited in the wild in April 2014. NOTE: this iss...

10CVSS9.5AI score0.88013EPSS
In wildExploits1References12
Zero Day Initiative
Zero Day Initiative
added 2014/04/23 12:0 a.m.25 views

Microsoft Internet Explorer CMarkup Undo execCommand Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.24875EPSS
Exploits1References1
Saint
Saint
added 2014/04/17 12:0 a.m.38 views

Internet Explorer CMarkup Object Handling Use-after-free Vulnerability

Added: 04/17/2014 CVE: CVE-2014-0322 BID: 65551 OSVDB: 103354 Background Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems. Problem Microsoft Internet Explorer 9 and 10 contain a use-after-free vulnerability in the CMarkup component of the MSHTML...

9.3CVSS9.1AI score0.85239EPSS
Exploits23
Saint
Saint
added 2014/04/17 12:0 a.m.43 views

Internet Explorer CMarkup Object Handling Use-after-free Vulnerability

Added: 04/17/2014 CVE: CVE-2014-0322 BID: 65551 OSVDB: 103354 Background Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems. Problem Microsoft Internet Explorer 9 and 10 contain a use-after-free vulnerability in the CMarkup component of the MSHTML...

9.3CVSS9.1AI score0.85239EPSS
Exploits23
Saint
Saint
added 2014/04/17 12:0 a.m.48 views

Internet Explorer CMarkup Object Handling Use-after-free Vulnerability

Added: 04/17/2014 CVE: CVE-2014-0322 BID: 65551 OSVDB: 103354 Background Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems. Problem Microsoft Internet Explorer 9 and 10 contain a use-after-free vulnerability in the CMarkup component of the MSHTML...

9.3CVSS9.1AI score0.85239EPSS
Exploits23
Rows per page
Query Builder