CVE-2015-0069 — Microsoft Internet Explorer vulnerability

CWE-2648 documents4 sources

Severity

4.3MEDIUMNVD

EPSS

23.4%

top 4.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Explorer

Timeline

PublishedFeb 11

Latest updateMay 14

Description

Microsoft Internet Explorer 10 and 11 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Internet Explorer ASLR Bypass Vulnerability."

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/internet_explorer10, 11+1

🔴Vulnerability Details

GHSA

GHSA-c463-cvjq-g9m9: Microsoft Internet Explorer 10 and 11 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Internet Explorer A↗2022-05-14

▶

🕵️Threat Intelligence

Zscaler

Zscaler detects IE & MS Office Vulnerabilities | 02-10-2015↗

▶

💬Community

Bugzilla

CVE-2015-7871 ntp: crypto-NAK symmetric association authentication bypass vulnerability↗2015-10-22

▶

Bugzilla

CVE-2014-6549 OpenJDK: incorrect class loader permission check in ClassLoader getParent() (Libraries, 8055314)↗2015-01-19

▶

Bugzilla

CVE-2015-0437 OpenJDK: code generation issue (Hotspot, 8064524)↗2015-01-19

▶