Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0268

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-0268
Last Modified 12 Feb 2014 12:37:47
Published 11 Feb 2014 11:50:40
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-0268

Summary

Microsoft Internet Explorer 8 through 11 does not properly restrict file installation and registry-key creation, which allows remote attackers to bypass the Mandatory Integrity Control protection mechanism via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability."

Vulnerable Systems

Application

  • Microsoft Internet Explorer 10

  • Microsoft Internet Explorer 11

  • Microsoft Internet Explorer 8

  • Microsoft Internet Explorer 9


References

MS - MS14-010

Related Patches

MS14-010 Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 8 for Windows Vista (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 8 for Windows Server 2008 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 7 for Windows Server 2008 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 6 for Windows XP (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 8 for Windows Server 2008 x64 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 x64 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 7 for Windows Server 2008 x64 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 x64 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 x64 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 x64 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 9 for Windows Vista x64 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 7 for Windows Vista x64 (KB2909921)

MS14-010 Cumulative Security Update for Internet Explorer 8 for Windows Vista x64 (KB2909921)


Last Updated: 27 May 2016 10:55:13