CVE-2015-0032

CWE-3997 documents4 sources
Severity
9.3CRITICAL
EPSS
18.9%
top 4.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft Internet ExplorerMicrosoft Vbscript
Timeline
PublishedMar 11
Latest updateMay 14

Description

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 8 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

NVDmicrosoft/vbscript5.6, 5.7, 5.8+2
NVDmicrosoft/internet_explorer4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-q6vc-g4j4-ccm3: vbscript2022-05-14
CVEList
CVE-2015-0032: vbscript2015-03-11

💬Community

2
Bugzilla
CVE-2015-5264 CVE-2015-5272 CVE-2015-5265 CVE-2015-5266 CVE-2015-5267 CVE-2015-5268 CVE-2015-5269 moodle: Multiple security issues (MSA-15-0030, MSA-15-0031, MSA-15-0032, MSA-15-0033, MSA-15-0034, MSA2015-09-21
Bugzilla
CVE-2015-5265 moodle: Free access to the file manager in the wiki via text editor (MSA-15-0032)2015-09-21
CVE-2015-0032 (CRITICAL CVSS 9.3) | vbscript.dll in Microsoft VBScript | cvebase.io