CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

Microsoft KB•added 2018/04/17 12:0 a.m.•14 views

MS14-084: Description of the security update for VBScript 5.7: December 9, 2014

MS14-084: Description of the security update for VBScript 5.7: December 9, 2014 INTRODUCTION Microsoft has released security bulletin MS14-084. To learn more about this security bulletin: Home users: https://www.microsoft.com/security/pc-security/updates.aspxSkip the details: Download the updates...

6.9AI score

Exploits0

0day.today•added 2016/11/08 12:0 a.m.•77 views

Internet Explorer 8-11, IIS, CScript.exe/WScript.exe VBScript - CRegExp..Execute Use of Uninitialize

A specially crafted script can cause the VBScript engine to access data before initializing it. An attacker that is able to run such a script in any application that embeds the VBScript engine may be able to control execution flow and execute arbitrary code. This includes all versions of Microsof...

9.3CVSS6.9AI score0.26832EPSS

Exploits2

myhack58•added 2016/10/17 12:0 a.m.•37 views

From the patch compare to the PoC to reproduce it MS16-0 3 0-vulnerability warning-the black bar safety net

MS16-0 3 0 vulnerability MS16-0 3 0 vulnerabilities Windows OLE remote code execution vulnerability, since OLE does not have the correct validation of user input, causing by the special structure of the file or the program can trigger the vulnerability, causing the user to click on after the remo...

7.8AI score

Exploits0

NVD•added 2015/07/14 9:59 p.m.•13 views

CVE-2015-2372

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 6 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "VBScript Memory Corruption Vulnerability."...

9.3CVSS7.5AI score0.1631EPSS

Exploits0References4

Prion•added 2015/07/14 9:59 p.m.•18 views

Memory corruption

9.3CVSS8.1AI score0.1631EPSS

Exploits0References4Affected Software1

Cvelist•added 2015/07/14 9:0 p.m.•25 views

CVE-2015-2372

7.5AI score0.1631EPSS

Exploits0References4

CVE•added 2015/07/14 9:0 p.m.•85 views

CVE-2015-2372

CVE-2015-2372 concerns vbscript.dll in Microsoft VBScript 5.6–5.8 used with Internet Explorer (IE 6–11) and related products. The vulnerability enables remote code execution or memory corruption via a crafted web site, due to memory corruption in VBScript as described in MS15-066. Connected sourc...

9.3CVSS7.6AI score0.1631EPSS

Exploits0References4Affected Software1

NVD•added 2015/05/13 10:59 a.m.•20 views

CVE-2015-1684

VBScript.dll in the Microsoft VBScript 5.6 through 5.8 engine, as used in Internet Explorer 8 through 11 and other products, allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript ASLR Bypass."...

4.3CVSS6.3AI score0.1309EPSS

Exploits0References4

Prion•added 2015/05/13 10:59 a.m.•17 views

Security feature bypass

4.3CVSS6.8AI score0.1309EPSS

Exploits0References4Affected Software2

CVE•added 2015/05/13 10:0 a.m.•63 views

CVE-2015-1684

CVE-2015-1684 affects the VBScript engine (VBScript.dll) in Microsoft VBScript 5.6–5.8 used by Internet Explorer 8–11. The issue is an ASLR bypass caused by memory handling during regex processing, enabling remote-style ASLR bypass via a crafted web page. Connected advisories confirm ASLR bypass ...

4.3CVSS6.3AI score0.1309EPSS

Exploits0References4Affected Software1

Cvelist•added 2015/05/13 10:0 a.m.•19 views

CVE-2015-1684

6.2AI score0.1309EPSS

Exploits0References4

NVD•added 2015/03/11 10:59 a.m.•17 views

CVE-2015-0032

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 8 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "VBScript Memory Corruption Vulnerability."...

9.3CVSS7.5AI score0.18901EPSS

Exploits0References5

Prion•added 2015/03/11 10:59 a.m.•18 views

Memory corruption

9.3CVSS8.1AI score0.18901EPSS

Exploits0References5Affected Software2

Cvelist•added 2015/03/11 10:0 a.m.•19 views

CVE-2015-0032

7.5AI score0.18901EPSS

Exploits0References5

NVD•added 2014/12/11 12:59 a.m.•19 views

CVE-2014-6363

9.3CVSS7.5AI score0.26832EPSS

Exploits2References4

Prion•added 2014/12/11 12:59 a.m.•18 views

Memory corruption

9.3CVSS8.1AI score0.26832EPSS

Exploits2References4Affected Software2

CVE•added 2014/12/11 12:0 a.m.•78 views

CVE-2014-6363

CVE-2014-6363 affects the Microsoft VBScript engine (versions 5.6–5.8) used with Internet Explorer and other products. The issue is a memory corruption vulnerability in VBScript CRegExp/engine handling that can allow remote code execution when a user visits a crafted web page. Exploitation is evi...

9.3CVSS7.6AI score0.26832EPSS

Exploits2References4Affected Software2

Cvelist•added 2014/12/11 12:0 a.m.•23 views

CVE-2014-6363

8.7AI score0.26832EPSS

Exploits2References4

seebug.org•added 2014/07/01 12:0 a.m.•42 views

StarUML WinGraphviz.dll - ActiveX Buffer Overflow Vulnerability

No description provided by source. Exploit Title: StarUML WinGraphviz.dll ActiveX buffer overflow vulnerability Date: 03.8.2013 Exploit Author: d3b4g Vendor Homepage:http://staruml.sourceforge.net/en/ Software Link: http://staruml.sourceforge.net/en/ Tested on: Windows XP SP3 About StarUML...

7.1AI score

Exploits0

0day.today•added 2013/08/03 12:0 a.m.•46 views

StarUML WinGraphviz.dll - ActiveX Buffer Overflow Vulnerability

Exploit for windows platform in category dos / poc Exploit Title: StarUML WinGraphviz.dll ActiveX buffer overflow vulnerability Date: 03.8.2013 Exploit Author: d3b4g Vendor Homepage:http://staruml.sourceforge.net/en/ Software Link: http://staruml.sourceforge.net/en/ Tested on: Windows XP SP3 Abou...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by