4 matches found
CVE-2015-6059
The CVE-2015-6059 entry corresponds to an information-disclosure vulnerability in Microsoft’s VBScript 5.7/5.8 and JScript 5.7/5.8 engines used by Internet Explorer 8–11 and other products. A remote attacker could obtain sensitive information from process memory via a crafted web site (Scripting ...
CVE-2015-1686
CVE-2015-1686 documents an ASLR bypass in Microsoft Internet Explorer's scripting engines: VBScript 5.6–5.8 and JScript 5.6–5.8 used in IE8–IE11 (and related products). The root cause is ASLR bypass capability within these engines when rendering a crafted web page, enabling potential arbitrary co...
CVE-2015-1684
CVE-2015-1684 affects the VBScript engine (VBScript.dll) in Microsoft VBScript 5.6–5.8 used by Internet Explorer 8–11. The issue is an ASLR bypass caused by memory handling during regex processing, enabling remote-style ASLR bypass via a crafted web page. Connected advisories confirm ASLR bypass ...
CVE-2015-6052
CVE-2015-6052 covers a security feature bypass in the VBScript 5.7/5.8 and JScript 5.7/5.8 engines used by Internet Explorer 8–11 and other products. A remote attacker could bypass ASLR via a crafted website. The issue is described as a VBScript/JScript ASLR bypass affecting IE components; relate...