CVE-2014-2774Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Internet Explorer

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer11 documents3 sources
Severity
9.3CRITICALNVD
OSV7.5
EPSS
16.3%
top 5.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Erlang OTPMicrosoft Internet Explorer
Timeline
PublishedAug 12
Latest updateMay 14

Description

Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-2820, CVE-2014-2826, CVE-2014-2827, and CVE-2014-4063.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

NVDmicrosoft/internet_explorer6 versions+5
Ubuntuerlang/erlang_otp< 1:16.b.3-dfsg-1ubuntu2.2+1

🔴Vulnerability Details

6
GHSA
GHSA-2w9p-3jw9-6hcv: Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf2022-05-14
GHSA
GHSA-73px-54m5-qm94: Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf2022-05-14
GHSA
GHSA-5g88-92c3-56qf: Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf2022-05-14
GHSA
GHSA-73h3-6f2v-rvhm: Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf2022-05-14
GHSA
GHSA-gg24-jvxr-982q: Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf2022-05-14
CVE-2014-2774 — Microsoft vulnerability | cvebase