Lucene search
K

5 matches found

NVD
NVD
added 2014/12/11 12:59 a.m.25 views

CVE-2014-6328

Microsoft Internet Explorer 8 through 11 allows remote attackers to bypass the XSS filter via a crafted attribute of an element in an HTML document, aka "Internet Explorer XSS Filter Bypass Vulnerability," a different vulnerability than CVE-2014-6365...

5CVSS5.5AI score0.21347EPSS
Exploits0References1
CVE
CVE
added 2014/12/11 12:0 a.m.66 views

CVE-2014-6328

Microsoft Internet Explorer 8–11 is affected by CVE-2014-6328, a remote vulnerability where an attacker can bypass the built-in XSS filter by crafting an attribute of an HTML element in a page. The issue is distinct from CVE-2014-6365 and is addressed by Microsoft’s MS14-080 update. Affected prod...

5CVSS5.5AI score0.21347EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/12/09 12:0 a.m.66 views

MS14-080: Cumulative Security Update for Internet Explorer (3008923)

The version of Internet Explorer installed on the remote host is missing Cumulative Security Update 3008923. It is, therefore, affected by multiple vulnerabilities, the majority of which are remote code execution vulnerabilities. An attacker can exploit these by convincing a user to visit a...

9.3CVSS5.5AI score0.28442EPSS
Exploits9References15
Symantec
Symantec
added 2014/12/09 12:0 a.m.33 views

Microsoft Internet Explorer XSS Filter CVE-2014-6328 Security Bypass Vulnerability

Description Microsoft Internet Explorer is prone to a security-bypass vulnerability that affects the XSS Filter. An attacker can exploit this issue by tricking an unsuspecting victim into viewing a page containing malicious content. An attacker can exploit this issue to execute arbitrary script...

5CVSS9.4AI score0.21347EPSS
Exploits0Affected Software10
Check Point Advisories
Check Point Advisories
added 2014/12/09 12:0 a.m.5 views

Microsoft Internet Explorer XSS Filter Bypass (MS14-080: CVE-2014-6328)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...

5CVSS7AI score0.21347EPSS
Exploits0
Rows per page
Query Builder