Kaspersky Threats

Detect date

?

03/10/2015

Severity

?

Critical

Description

Multiple critical vulnerabilities have been found in Internet Explorer. Malicious users can exploit these vulnerabilities to gain privilleges, execute arbitrary code, cause denial of service, inject arbitrary code or bypass security restrictions.

Below is a complete list of vulnerabilities

XSS vulnerability can be exploited remotely via vectors related to IFRAME;
An unknwon vulnerabilities can be exploited remotely via a specially designed web site.

Affected products

Microsoft Internet Explorer versions from 6 to 11

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

Microsoft bulletin
CVE-2015-0032
CVE-2015-1622
CVE-2015-1634
CVE-2015-1624
CVE-2015-1623
CVE-2015-0072
CVE-2015-0099
CVE-2015-0100
CVE-2015-1626
CVE-2015-1625
CVE-2015-1627
CVE-2015-0056

Impacts

?

ACE

[?]

DoS

[?]

CI

[?]

SB

[?]

PE

[?]

Detect date ?	03/10/2015
Severity ?	Critical
Description	Multiple critical vulnerabilities have been found in Internet Explorer. Malicious users can exploit these vulnerabilities to gain privilleges, execute arbitrary code, cause denial of service, inject arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities XSS vulnerability can be exploited remotely via vectors related to IFRAME; An unknwon vulnerabilities can be exploited remotely via a specially designed web site.
Affected products	Microsoft Internet Explorer versions from 6 to 11
Solution	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories	Microsoft bulletin CVE-2015-0032 CVE-2015-1622 CVE-2015-1634 CVE-2015-1624 CVE-2015-1623 CVE-2015-0072 CVE-2015-0099 CVE-2015-0100 CVE-2015-1626 CVE-2015-1625 CVE-2015-1627 CVE-2015-0056
Impacts ?	ACE [?] DoS [?] CI [?] SB [?] PE [?]
Related products	Microsoft Internet Explorer
CVE-IDS ?	CVE-2015-00329.3Critical CVE-2015-16229.3Critical CVE-2015-16349.3Critical CVE-2015-16249.3Critical CVE-2015-16239.3Critical CVE-2015-00724.3Warning CVE-2015-00999.3Critical CVE-2015-01009.3Critical CVE-2015-16269.3Critical CVE-2015-16259.3Critical CVE-2015-16274.3Warning CVE-2015-00569.3Critical
Microsoft official advisories	Microsoft Security Update Guide
KB list	3030630 3030398 3032359 3030403
Exploitation	Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
	Find out the statistics of the vulnerabilities spreading in your region

KLA10472Multiple vulnerabilities in Internet Explorer

KLA10472
Multiple vulnerabilities in Internet Explorer