Lucene search
Ashfaq Ansari - Project Srishti - Payatu TechnologiesZDI-15-547HistoryNov 10, 2015 - 12:00 a.m.
Microsoft Internet Explorer CDOMStringDataList::InitFromString Out-Of-Bounds Indexing Information Disclosure Vulnerability
2015-11-1000:00:00
Ashfaq Ansari - Project Srishti - Payatu Technologies
www.zerodayinitiative.com
19
0.939 High
EPSS
Percentile
99.1%
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within CDOMStringDataList::InitFromString. By manipulating a documentβs elements an attacker can read outside the bounds of an allocated chunk. An attacker can leverage this vulnerability to leak arbitrary memory.
Related
cve
cve
CVE-2015-6086
2015-11-11 12:59:27
symantec
symantec
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Information Disclosure (MS15-112: CVE-2015-6086)
2015-11-10 00:00:00
zdt
zdt
nvd
nvd
CVE-2015-6086
2015-11-11 12:59:27
seebug
seebug
Internet Explorer Information Disclosure VulnerabilityοΌCVE-2015-6086οΌ
2016-05-03 00:00:00
exploitpack
exploitpack
cvelist
cvelist
CVE-2015-6086
2015-11-11 11:00:00
prion
prion
Information disclosure
2015-11-11 12:59:00
exploitdb
exploitdb
nessus
nessus
MS15-112: Cumulative Security Update for Internet Explorer (3104517)
2015-11-10 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (3104517)
2015-11-11 00:00:00
mskb
mskb
kaspersky
kaspersky
KLA10697 Multiple vulnerabilities in Microsoft Internet Explorer
2015-11-10 00:00:00