Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2807

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2014-2807
Last Modified 17 Jul 2014 01:06:28
Published 08 Jul 2014 06:55:07
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-2807

Summary

Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-2800 and CVE-2014-2809.

Vulnerable Systems

Application

  • Microsoft Internet Explorer 10

  • Microsoft Internet Explorer 11

  • Microsoft Internet Explorer 6

  • Microsoft Internet Explorer 7

  • Microsoft Internet Explorer 8

  • Microsoft Internet Explorer 9


References

MS - MS14-037

SECTRACK - 1030532

BID - 68388

SECUNIA - 59775

Related Patches

MS14-037 Cumulative Security Update for Internet Explorer 8 for WEPOS and POSReady 2009 (KB2962872)

MS14-037 Cumulative Security Update for Internet Explorer 7 for WEPOS and POSReady 2009 (KB2962872)


Last Updated: 27 May 2016 10:55:16