Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0032

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2015-0032
Last Modified 10 Sep 2015 11:58:19
Published 11 Mar 2015 06:59:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0032

Summary

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 8 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability."

Vulnerable Systems

Application

  • Microsoft Internet Explorer 10

  • Microsoft Internet Explorer 11

  • Microsoft Internet Explorer 8

  • Microsoft Internet Explorer 9

  • Microsoft Vbscript 5.6

  • Microsoft Vbscript 5.7

  • Microsoft Vbscript 5.8


References

MS - MS15-019

MS - MS15-018

SECTRACK - 1031888

SECTRACK - 1031887

BID - 72910

Related Patches

MS15-018 Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 8 for Windows Vista (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 7 for Windows Server 2008 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 8 for Windows Server 2008 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 7 for Windows Vista x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 9 for Windows Vista x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 8 for Windows Vista x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 8 for Windows Server 2008 x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 7 for Windows Server 2008 x64 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 8 for WEPOS and POSReady 2009 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 6 for WEPOS and POSReady 2009 (KB3032359)

MS15-018 Cumulative Security Update for Internet Explorer 7 for WEPOS and POSReady 2009 (KB3032359)

MS15-019 Security Update for Windows Vista (KB3030398)

MS15-019 Security Update for Windows Server 2008 (KB3030398)

MS15-019 Security Update for Windows Server 2003 (KB3030398)

MS15-019 Security Update for Windows Server 2003 (KB3030403)

MS15-019 Security Update for Windows Server 2008 x64 (KB3030398)

MS15-019 Security Update for Windows Server 2003 x64 (KB3030398)

MS15-019 Security Update for Windows Server 2003 x64 (KB3030403)

MS15-019 Security Update for Windows Vista x64 (KB3030398)

MS15-019 Security Update for WEPOS and POSReady 2009 (KB3030398)


Last Updated: 27 May 2016 11:08:02