CVE-2014-1800
published 2014-06-11CVE-2014-1800: Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web…
PriorityP259critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
24.46%
97.6th percentile
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_cisco5.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-34qg-g4p5-rjqq: Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf
ghsa_unreviewed·2022-05-14
CVE-2014-1800 [HIGH] CWE-119 GHSA-34qg-g4p5-rjqq: Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."
Cisco
Cisco 1800 Series ISR ISDN Basic Rate Interface Denial of Service Vulnerability
vendor_cisco·2014-08-28·CVSS 5.4
CVE-2014-3347 [MEDIUM] CWE-399 Cisco 1800 Series ISR ISDN Basic Rate Interface Denial of Service Vulnerability
Cisco 1800 Series ISR ISDN Basic Rate Interface Denial of Service Vulnerability
Cisco 1800 Series Integrated Services Routers (ISR) contain a vulnerability in the hardware entropy collection module when the Integrated Services Digital Network (ISDN) Basic Rate Interface (BRI) is configured and connected to a public switched network. This could allow an attacker with knowledge of the ISDN phone number of the affected device to trigger a denial of service (DoS) condition.
The vulnerability is due to an interrupt timer collision that causes the hardware encryption module to enter a corrupted state, causing the device to become unresponsive. An attacker would need to perform the attack exactly when the device polls the hardware encryption module to perform entropy collection.
The affected d
No detection rules found.
http://www.securityfocus.com/bid/67831http://www.securitytracker.com/id/1030370https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-035http://www.securityfocus.com/bid/67831http://www.securitytracker.com/id/1030370https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-035
2014-06-11
Published