Lucene search
K

20 matches found

Exploit DB
Exploit DB
added 2016/11/28 12:0 a.m.28 views

Microsoft Internet Explorer 10 - MSHTML 'CEdit­Adorner::Detach' Use-After-Free (MS13-047)

var o­Window = window.open"window.xhtml"; set­Intervalfunction try o­Window.eval"" + function document.design­Mode = "on"; document.exec­Command"Select­All"; var o­Selection = window.get­Selection; o­Selection.collapsedocument,1; document.exec­Command"Insert­Image", false;...

7.4AI score
Exploits0
Symantec
Symantec
added 2016/11/08 12:0 a.m.31 views

Microsoft Edge and Internet Explorer XSS Filter CVE-2016-7239 Information Disclosure Vulnerability

Description Microsoft Edge and Internet Explorer are prone to an information-disclosure vulnerability that affects the XSS Filter. An attacker can exploit this issue by tricking an unsuspecting victim into viewing a page containing malicious content. An attacker can exploit this issue to execute...

2.6CVSS0.5AI score0.11616EPSS
Exploits1Affected Software1
Prion
Prion
added 2016/06/16 2:59 p.m.13 views

Code injection

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083...

9.3CVSS6.8AI score0.0381EPSS
Exploits0References7Affected Software8
Cvelist
Cvelist
added 2016/06/16 2:0 p.m.22 views

CVE-2016-4139

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083...

9AI score0.0381EPSS
Exploits0References7
Cvelist
Cvelist
added 2016/06/16 2:0 p.m.21 views

CVE-2016-4131

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083...

9AI score0.0381EPSS
Exploits0References7
Cvelist
Cvelist
added 2016/06/16 2:0 p.m.20 views

CVE-2016-4133

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083...

9AI score0.0381EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2016/05/11 11:0 a.m.23 views

CVE-2016-1105

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064...

7.6CVSS7.1AI score0.37716EPSS
Exploits1References2
Cvelist
Cvelist
added 2016/05/11 10:0 a.m.25 views

CVE-2016-4111

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064...

8.5AI score0.08444EPSS
Exploits0References6
Cvelist
Cvelist
added 2016/05/11 10:0 a.m.25 views

CVE-2016-1107

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064...

8.4AI score0.08382EPSS
Exploits0References5
Symantec
Symantec
added 2014/11/11 12:0 a.m.28 views

Microsoft Internet Explorer CVE-2014-6323 Clipboard Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Internet Explorer 7, 8, 9, 10, and 11 are vulnerable. Technologies Affected Avaya Aura Conferencing Standa...

4.3CVSS9.2AI score0.13564EPSS
Exploits0Affected Software2
Symantec
Symantec
added 2014/10/14 12:0 a.m.48 views

Microsoft Internet Explorer CVE-2014-4140 ASLR Security Bypass Vulnerability

Description Microsoft Internet Explorer is prone to a security-bypass vulnerability. An attacker can leverage this issue to bypass certain security restrictions and execute arbitrary code by exploiting another vulnerability in the application. Technologies Affected Avaya Aura Conferencing Standar...

4.3CVSS9AI score0.20683EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2014/09/09 12:0 a.m.25 views

Microsoft Internet Explorer CVE-2014-4110 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.6AI score0.15145EPSS
Exploits0Affected Software1
The Hacker News
The Hacker News
added 2014/02/14 8:18 p.m.92 views

CVE-2014-0322: Internet Explorer zero-day exploit targets US Military Intelligence

Hackers are using a zero day vulnerability in Microsoft's Internet Explorer IE web browser and targeting US military personnels in an active attack campaign, dubbed as 'Operation Snowman'. FireEye Researchers have discovered that a U.S. veterans website was compromised to serve a zero day exploit...

9.3CVSS8AI score0.85239EPSS
Exploits23
Symantec
Symantec
added 2014/02/13 12:0 a.m.32 views

Microsoft Internet Explorer CVE-2014-0322 Use-After-Free Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.85239EPSS
Exploits23References2Affected Software10
OpenVAS
OpenVAS
added 2014/02/12 12:0 a.m.60 views

Microsoft Internet Explorer Multiple Vulnerabilities (2909921)

This host is missing a critical security update according to Microsoft Bulletin MS14-010. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS5AI score0.38434EPSS
Exploits5References26
Symantec
Symantec
added 2014/02/11 12:0 a.m.31 views

Microsoft Internet Explorer CVE-2014-0268 Remote Privilege Escalation Vulnerability

Description Microsoft Internet Explorer is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1 Avaya CallPilot 5.0 Avay...

4.3CVSS9.5AI score0.22452EPSS
Exploits1Affected Software11
Symantec
Symantec
added 2013/10/08 12:0 a.m.34 views

Microsoft Internet Explorer CVE-2013-3882 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 10 is affected...

9.3CVSS0.2AI score0.20135EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2013/03/11 10:0 a.m.45 views

CVE-2013-2552

The CVE-2013-2552 entry covers an unspecified vulnerability in Microsoft Internet Explorer 10 on Windows 8 that enables remote sandbox bypass by abusing access to a Medium integrity process, as demonstrated by VUPEN during Pwn2Own at CanSecWest 2013. Documents identify IE10/Windows 8 as affected ...

7.5CVSS6.8AI score0.14402EPSS
Exploits1References3Affected Software1
Symantec
Symantec
added 2013/02/12 12:0 a.m.15 views

Microsoft Internet Explorer vtable Use-After-Free Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

Exploits0Affected Software10
Symantec
Symantec
added 2012/08/14 12:0 a.m.34 views

Adobe Flash Player CVE-2012-1535 Remote Code Execution Vulnerability

Description Adobe Flash Player is prone to an unspecified remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions. Adob...

9.3CVSS0.70384EPSS
Exploits11References2Affected Software14
Rows per page
Query Builder