CVE-2014-1765
published 2014-04-27CVE-2014-1765: Multiple use-after-free vulnerabilities in Microsoft Internet Explorer 6 through 11 allow remote attackers to execute arbitrary code via unspecified vectors…
PriorityP347high7.6CVSS 2.0
AVNACHAuNCCICAC
EPSS
15.53%
96.4th percentile
Multiple use-after-free vulnerabilities in Microsoft Internet Explorer 6 through 11 allow remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by Sebastian Apelt and Andreas Schmidt during a Pwn2Own competition at CanSecWest 2014.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Microsoft Internet Explorer 11 resource management (MS14-037 / Nessus ID 76406)
vuldb·2026-05-12·CVSS 7.6
CVE-2014-1765 [HIGH] Microsoft Internet Explorer 11 resource management (MS14-037 / Nessus ID 76406)
A vulnerability has been found in Microsoft Internet Explorer 11 and classified as critical. Affected is an unknown function. Performing a manipulation results in improper resource management.
This vulnerability was named CVE-2014-1765. The attack may be initiated remotely. In addition, an exploit is available.
It is recommended to apply a patch to fix this issue.
VulDB
Microsoft Internet Explorer up to 11 resource management (MS14-037 / Nessus ID 76406)
vuldb·2026-05-12·CVSS 7.6
CVE-2014-1765 [HIGH] Microsoft Internet Explorer up to 11 resource management (MS14-037 / Nessus ID 76406)
A vulnerability described as critical has been identified in Microsoft Internet Explorer up to 11. This impacts an unknown function. Executing a manipulation can lead to improper resource management.
This vulnerability appears as CVE-2014-1765. The attack may be performed from remote. There is no available exploit.
It is advisable to implement a patch to correct this issue.
GHSA
GHSA-rr8g-528h-948x: Multiple use-after-free vulnerabilities in Microsoft Internet Explorer 6 through 11 allow remote attackers to execute arbitrary code via unspecified v
ghsa_unreviewed·2022-05-14
CVE-2014-1765 [HIGH] GHSA-rr8g-528h-948x: Multiple use-after-free vulnerabilities in Microsoft Internet Explorer 6 through 11 allow remote attackers to execute arbitrary code via unspecified v
Multiple use-after-free vulnerabilities in Microsoft Internet Explorer 6 through 11 allow remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by Sebastian Apelt and Andreas Schmidt during a Pwn2Own competition at CanSecWest 2014.
No detection rules found.
No public exploits indexed.
http://secunia.com/advisories/59775http://twitter.com/thezdi/statuses/444216845734666240http://www.pwn2own.com/2014/03/pwn2own-results-thursday-day-two/http://www.securitytracker.com/id/1030532https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-037http://secunia.com/advisories/59775http://twitter.com/thezdi/statuses/444216845734666240http://www.pwn2own.com/2014/03/pwn2own-results-thursday-day-two/http://www.securitytracker.com/id/1030532https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-037
2014-04-27
Published