6 matches found
CVE-2015-2482
creationtimestamp| type| source ---|---|--- 2016-11-18 10:20:16+00:00| published-proof-of-concept| https://t.me/FullDisclosure/304 2016-11-21 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40798...
Microsoft Internet Explorer 8 Javascript RegExpBase::FBadHeader Use-After-Free
Throughout November, I plan to release details on vulnerabilities I found in web-browsers which I've not released before. This is the twelfth entry in that series. Unfortunately I won't be able to publish everything within one month at the current rate, so I may continue to publish these through...
CVE-2015-2482
CVE-2015-2482 affects Microsoft VBScript/JScript engines (VBScript 5.7/5.8 and JScript 5.7/5.8) used in Internet Explorer 8–11 and related products. A crafted replace operation on a JavaScript RegExp can trigger memory corruption, enabling remote code execution or a denial of service. Connected s...
JScript 5.7 RegExpBase::FBadHeader Use-After-Free
Recompiling the regular expression pattern during a replace can cause the code to reuse a freed string, but only if the string is freed from the cache by allocating and freeing a number of strings of certain size. CVE-2015-2482: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2482...
Microsoft Windows JScript and VBScript Remote Code Execution Vulnerability (3089659)
This host is missing a critical security update according to Microsoft Bulletin MS15-108. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS15-108: Security Update for JScript and VBScript to Address Remote Code Execution (3089659)
The VBScript and JScript engines on the remote host are affected by multiple vulnerabilities : - Multiple remote code execution vulnerabilities exist in the VBScript and JScript engines due to improper handling of objects in memory. A remote attacker can exploit these vulnerabilities by convincin...