Kaspersky Threats

Описание

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities

Improper memory objects access can be exploited remotely via a specially designed web content to execute arbitrary code
Improper memory handling at VBScript and JScript engines can be exploited remotely via a specially designed web content or ActiveX control to execute arbitrary code;
Improper memory content disclosure can be exploited remotely via a specially designed web content to obtain sensitive information;
Improper Address Space Layout Randomization can be exploited remotely via a specially designed web content to bypass security restrictions.

Technical details

To mitigate vulnerability (2) access to VBScript.dll and JScript.dll can be restricted. For further details look at original advisory.

Первичный источник обнаружения

Эксплуатация

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/39698

Связанные продукты

Microsoft-Internet-Explorer

Список CVE

CVE-2015-6064
critical
CVE-2015-6078
critical
CVE-2015-6088
warning
CVE-2015-6073
critical
CVE-2015-6087
critical
CVE-2015-6066
critical
CVE-2015-6068
critical
CVE-2015-6065
critical
CVE-2015-6071
critical
CVE-2015-6072
critical
CVE-2015-6069
critical
CVE-2015-6070
critical
CVE-2015-6074
critical
CVE-2015-6086
warning
CVE-2015-6077
critical
CVE-2015-6082
critical
CVE-2015-6081
critical
CVE-2015-6080
critical
CVE-2015-6079
critical
CVE-2015-6076
critical
CVE-2015-6075
critical
CVE-2015-2427
critical
CVE-2015-6089
critical
CVE-2015-6085
critical
CVE-2015-6084
critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!