Vbscript Security Vulnerabilities and Issues — Vbscript CVE List

Lucene search

MicrosoftVbscript

23 matches found

CVE•added 2016/05/11 1:59 a.m.•1223 views

CVE-2016-0189

The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnera...

7.6CVSS7.8AI score0.92205EPSS

CVE•added 2016/05/11 1:59 a.m.•199 views

CVE-2016-0187

The Microsoft (1) JScript 5.8 and (2) VBScript 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability,"...

7.6CVSS7.8AI score0.92205EPSS

CVE•added 2012/08/15 1:55 a.m.•129 views

CVE-2012-2523

Integer overflow in Microsoft Internet Explorer 8 and 9, JScript 5.8, and VBScript 5.8 on 64-bit platforms allows remote attackers to execute arbitrary code by leveraging an incorrect size calculation during object copying, aka "JavaScript Integer Overflow Remote Code Execution Vulnerability."

9.3CVSS8.2AI score0.64663EPSS

CVE•added 2016/06/16 1:59 a.m.•102 views

CVE-2016-3206

7.6CVSS7.8AI score0.19EPSS

CVE•added 2016/06/16 1:59 a.m.•82 views

CVE-2016-3205

7.6CVSS7.8AI score0.19EPSS

CVE•added 2016/06/16 1:59 a.m.•82 views

CVE-2016-3207

7.6CVSS7.8AI score0.19EPSS

CVE•added 2015/07/14 9:59 p.m.•79 views

CVE-2015-2372

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 6 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability."

9.3CVSS7.6AI score0.1631EPSS

CVE•added 2016/01/13 5:59 a.m.•71 views

CVE-2016-0002

The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."

7.6CVSS7.7AI score0.58738EPSS

CVE•added 2014/12/11 12:59 a.m.•70 views

CVE-2014-6363

9.3CVSS7.6AI score0.32682EPSS

CVE•added 2016/06/16 1:59 a.m.•68 views

CVE-2016-3202

The Microsoft (1) Chakra JavaScript, (2) JScript, and (3) VBScript engines, as used in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Cor...

7.6CVSS8.2AI score0.1691EPSS

CVE•added 2015/12/09 11:59 a.m.•67 views

CVE-2015-6136

9.3CVSS7.3AI score0.44585EPSS

CVE•added 2015/10/14 1:59 a.m.•65 views

CVE-2015-6059

The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Scripting Engine Information Disclosure Vulnerability."

4.3CVSS7.2AI score0.25225EPSS

CVE•added 2015/05/13 10:59 a.m.•60 views

CVE-2015-1686

The Microsoft (1) VBScript 5.6 through 5.8 and (2) JScript 5.6 through 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript and JScript ASLR Bypass."

4.3CVSS6.3AI score0.15111EPSS

CVE•added 2015/10/14 1:59 a.m.•60 views

CVE-2015-2482

The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted replace operation with a JavaScript regular expre...

9.3CVSS8AI score0.64097EPSS

CVE•added 2015/03/11 10:59 a.m.•59 views

CVE-2015-0032

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 8 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability."

9.3CVSS7.6AI score0.18901EPSS

CVE•added 2014/02/12 4:50 a.m.•58 views

CVE-2014-0271

The VBScript engine in Microsoft Internet Explorer 6 through 11, and VBScript 5.6 through 5.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability."

9.3CVSS7.6AI score0.45663EPSS

CVE•added 2015/05/13 10:59 a.m.•57 views

CVE-2015-1684

VBScript.dll in the Microsoft VBScript 5.6 through 5.8 engine, as used in Internet Explorer 8 through 11 and other products, allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript ASLR Bypass."

4.3CVSS6.3AI score0.15111EPSS

CVE•added 2015/10/14 1:59 a.m.•55 views

CVE-2015-6056

The (1) JScript and (2) VBScript engines in Microsoft Internet Explorer 9 through 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."

9.3CVSS8.1AI score0.30101EPSS

CVE•added 2015/12/09 11:59 a.m.•53 views

CVE-2015-6135

5CVSS5.6AI score0.09826EPSS

CVE•added 2015/10/14 1:59 a.m.•52 views

CVE-2015-6052

The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript and JScript ASLR Bypass."

4.3CVSS7.6AI score0.2143EPSS

CVE•added 2015/10/14 1:59 a.m.•52 views

CVE-2015-6055

The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Filter arguments, aka "Scripting Engine Memory Corr...

9.3CVSS8.1AI score0.47364EPSS

CVE•added 2015/11/11 12:59 p.m.•50 views

CVE-2015-6089

The Microsoft (1) VBScript and (2) JScript engines, as used in Internet Explorer 8 through 11, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."

9.3CVSS7.7AI score0.28139EPSS

CVE•added 2011/04/13 6:55 p.m.•49 views

CVE-2011-0663

Multiple integer overflows in the Microsoft (1) JScript 5.6 through 5.8 and (2) VBScript 5.6 through 5.8 scripting engines allow remote attackers to execute arbitrary code via a crafted web page, aka "Scripting Memory Reallocation Vulnerability."

9.3CVSS7.2AI score0.22523EPSS