Lucene search
+L

148 matches found

saint
saint
added 2013/06/03 12:0 a.m.43 views

Internet Explorer VML Dashstyle Attributes Integer Overflow

Added: 06/03/2013 CVE: CVE-2013-2551 BID: 58570 OSVDB: 91197 Background Vector Markup Language VML is an XML-based format for vector graphics. Problem An integer overflow vulnerability in vml.dll when processing dashstyle attributes of certain VML elements in a web page allows arbitrary command...

9.3CVSS8.5AI score0.74096EPSS
Exploits9
zdi
zdi
added 2013/05/29 12:0 a.m.42 views

(Pwn2Own) Microsoft Internet Explorer VML Parsing Remote Code Execution Vulnerabillity

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS4.1AI score0.74096EPSS
Exploits9References1
zdi
zdi
added 2013/05/29 12:0 a.m.34 views

Microsoft Internet Explorer VML TextBox Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS3.9AI score0.20539EPSS
Exploits0References1
securityvulns
securityvulns
added 2013/05/27 12:0 a.m.123 views

VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 VML Remote Integer Overflow (MS13-037 / Pwn2Own)

VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 VML Remote Integer Overflow MS13-037 / Pwn2Own Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included a...

9.3CVSS8.3AI score0.74096EPSS
Exploits9
checkpoint_advisories
checkpoint_advisories
added 2013/05/14 12:0 a.m.64 views

Internet Explorer VML Objects Use After Free (MS13-037; CVE-2013-2551)

A buffer overflow vulnerability exists in Internet Explorer while accessing a dynamic array of attributes of a VML shape object. The vulnerability may lead to memory corruption in such a way that will allow code execution in the context of the current user...

8.7AI score0.74096EPSS
Exploits9
securityvulns
securityvulns
added 2013/02/14 12:0 a.m.117 views

Microsoft Internet Explorer multiple security vulnerabilities

Information leakage, multiple use-after-free vulnerabilities, VML memory corruption...

9.3CVSS1.8AI score0.55765EPSS
Exploits17Affected Software1
nvd
nvd
added 2013/02/13 12:4 p.m.24 views

CVE-2013-0030

The Vector Markup Language VML implementation in Microsoft Internet Explorer 6 through 10 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via a crafted web site, aka "VML Memory Corruption Vulnerability."...

9.3CVSS7.4AI score0.26696EPSS
Exploits0References3
prion
prion
added 2013/02/13 12:4 p.m.24 views

Memory corruption

The Vector Markup Language VML implementation in Microsoft Internet Explorer 6 through 10 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via a crafted web site, aka "VML Memory Corruption Vulnerability."...

9.3CVSS7.9AI score0.26696EPSS
Exploits0References3Affected Software1
cve
cve
added 2013/02/13 11:0 a.m.55 views

CVE-2013-0030

CVE-2013-0030 concerns memory corruption in Internet Explorer’s Vector Markup Language (VML) implementation. Multiple connected sources confirm the vulnerability affects IE versions 6–10 and stems from improper buffer allocation, enabling remote code execution via a crafted web page. The issue is...

9.3CVSS7.5AI score0.26696EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2013/02/13 11:0 a.m.31 views

CVE-2013-0030

The Vector Markup Language VML implementation in Microsoft Internet Explorer 6 through 10 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via a crafted web site, aka "VML Memory Corruption Vulnerability."...

7.4AI score0.26696EPSS
Exploits0References3
openvas
openvas
added 2013/02/13 12:0 a.m.25 views

Microsoft Internet Explorer VML Remote Code Execution Vulnerability (2797052)

This host is missing a critical security update according to Microsoft Bulletin MS13-010. OpenVAS Vulnerability Test $Id: secpodms13-010.nasl 6115 2017-05-12 09:03:25Z teissa $ Microsoft Internet Explorer VML Remote Code Execution Vulnerability 2797052 Authors: Thanga Prakash S Copyright: Copyrig...

9.3CVSS0.4AI score0.26696EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2013/02/13 12:0 a.m.8 views

PT-2013-2077 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 through 10 Description: A remote code execution issue exists due to improper buffer allocation in the Vector Markup Language VML implementation, allowing attackers to execute arbitrary code via a crafted...

9.3CVSS7.9AI score0.26696EPSS
Exploits0References6
openvas
openvas
added 2013/02/13 12:0 a.m.34 views

Microsoft Internet Explorer VML Remote Code Execution Vulnerability (2797052)

This host is missing a critical security update according to Microsoft Bulletin MS13-010. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.26696EPSS
Exploits0References3
threatpost
threatpost
added 2013/02/12 7:32 p.m.24 views

Microsoft Patches Critical IE Vulnerabilities

Internet Explorer continues to dominate Microsoft’s 2013 security updates. Among the 12 bulletins and 57 vulnerabilities patched in today’s release was a cumulative update for the maligned browser and another fix for a bug being exploited in the wild. Last month, an out-of-band fix for IE 6-8...

9.3CVSS1.4AI score0.26696EPSS
Exploits1References18
symantec
symantec
added 2013/02/12 12:0 a.m.27 views

Microsoft Internet Explorer Vector Markup Language CVE-2013-0030 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability that affects the implementation of Vector Markup Language VML. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to...

9.3CVSS0.1AI score0.26696EPSS
Exploits0Affected Software10
checkpoint_advisories
checkpoint_advisories
added 2013/02/12 12:0 a.m.24 views

Internet Explorer VML Objects Memory Corruption (MS13-009; CVE-2013-0030)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way VML buffers are allocated. A remote attacker could trigger this vulnerability by enticing an unsuspecting victim to open a specially crafted web page. An attacke...

9.3CVSS7AI score0.26696EPSS
Exploits0
securityvulns
securityvulns
added 2012/04/19 12:0 a.m.108 views

VUPEN Security Research - Microsoft Internet Explorer VML Remote Code Execution (MS12-023 / CVE-2012-0172)

VUPEN Security Research - Microsoft Internet Explorer VML Remote Code Execution MS12-023 / CVE-2012-0172 Website : http://www.vupen.com/english/research.php Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft...

9.3CVSS7AI score0.21897EPSS
Exploits1
seebug
seebug
added 2012/04/12 12:0 a.m.37 views

Microsoft Internet Explorer VML样式远程代码执行漏洞(CVE-2012-0172)(MS12-023)

BUGTRAQ ID: 52906 CVE ID: CVE-2012-0172 Microsoft Internet Explorer是微软公司推出的一款网页浏览器。 Microsoft Internet Explorer在访问已经删除的对象时在实现上存在可以破坏内存的远程代码执行漏洞,攻击者可利用此漏洞以当前用户权限执行任意代码。 0 Microsoft Internet Explorer 9.x Microsoft Internet Explorer 8.x Microsoft Internet Explorer 7.x Microsoft Internet Explorer 6.x...

9.3CVSS6.4AI score0.21897EPSS
Exploits1
openvas
openvas
added 2012/04/11 12:0 a.m.30 views

Microsoft Internet Explorer Multiple Vulnerabilities (2675157)

This host is missing a critical security update according to Microsoft Bulletin MS12-023. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.30421EPSS
Exploits5References8
openvas
openvas
added 2012/04/11 12:0 a.m.28 views

Microsoft Internet Explorer Multiple Vulnerabilities (2675157)

This host is missing a critical security update according to Microsoft Bulletin MS12-023. OpenVAS Vulnerability Test $Id: secpodms12-023.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft Internet Explorer Multiple Vulnerabilities 2675157 Authors: Rachana Shetty Copyright: Copyright c 2012 SecPo...

9.3CVSS0.1AI score0.30421EPSS
Exploits5References5
Rows per page
Query Builder