CVE-2015-2403
published 2015-07-14CVE-2015-2403: Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka…
PriorityP348critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
13.02%
95.8th percentile
Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v9mq-6w5f-87m3: Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web sit
ghsa_unreviewed·2022-05-14
CVE-2015-2403 [HIGH] CWE-119 GHSA-v9mq-6w5f-87m3: Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web sit
Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."
Red Hat
chromium-browser: v8 denial of service
vendor_redhat·2015-07-23·CVSS 5.0
CVE-2015-5605 [MEDIUM] chromium-browser: v8 denial of service
chromium-browser: v8 denial of service
The regular-expression implementation in Google V8, as used in Google Chrome before 44.0.2403.89, mishandles interrupts, which allows remote attackers to cause a denial of service (application crash) via crafted JavaScript code, as demonstrated by an error in garbage collection during allocation of a stack-overflow exception message.
Red Hat
chromium-browser: CSP bypass in unspecified component
vendor_redhat·2015-07-21·CVSS 4.3
CVE-2015-1281 [MEDIUM] chromium-browser: CSP bypass in unspecified component
chromium-browser: CSP bypass in unspecified component
core/loader/ImageLoader.cpp in Blink, as used in Google Chrome before 44.0.2403.89, does not properly determine the V8 context of a microtask, which allows remote attackers to bypass Content Security Policy (CSP) restrictions by providing an image from an unintended source.
Red Hat
chromium-browser: Spell checking dictionaries fetched over HTTP in unspecified
vendor_redhat·2015-07-21·CVSS 4.3
CVE-2015-1288 [MEDIUM] chromium-browser: Spell checking dictionaries fetched over HTTP in unspecified
chromium-browser: Spell checking dictionaries fetched over HTTP in unspecified
The Spellcheck API implementation in Google Chrome before 44.0.2403.89 does not use an HTTPS session for downloading a Hunspell dictionary, which allows man-in-the-middle attackers to deliver incorrect spelling suggestions or possibly have unspecified other impact via a crafted file, a related issue to CVE-2015-1263.
Red Hat
chromium-browser: Various fixes from internal audits, fuzzing and other initiatives
vendor_redhat·2015-07-21·CVSS 7.5
CVE-2015-1289 [HIGH] chromium-browser: Various fixes from internal audits, fuzzing and other initiatives
chromium-browser: Various fixes from internal audits, fuzzing and other initiatives
Multiple unspecified vulnerabilities in Google Chrome before 44.0.2403.89 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
Red Hat
chromium-browser: Use-after-free in accessibility.
vendor_redhat·2015-07-21·CVSS 7.5
CVE-2015-1277 [HIGH] CWE-416 chromium-browser: Use-after-free in accessibility.
chromium-browser: Use-after-free in accessibility.
Use-after-free vulnerability in the accessibility implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging lack of certain validity checks for accessibility-tree data structures.
Red Hat
chromium-browser: Heap-buffer-overflow in pdfium.
vendor_redhat·2015-07-21·CVSS 7.5
CVE-2015-1279 [HIGH] CWE-122 chromium-browser: Heap-buffer-overflow in pdfium.
chromium-browser: Heap-buffer-overflow in pdfium.
Integer overflow in the CJBig2_Image::expand function in fxcodec/jbig2/JBig2_Image.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via large height and stride values.
Red Hat
chromium-browser: UXSS in blink.
vendor_redhat·2015-07-21·CVSS 4.3
CVE-2015-1286 [MEDIUM] CWE-79 chromium-browser: UXSS in blink.
chromium-browser: UXSS in blink.
Cross-site scripting (XSS) vulnerability in the V8ContextNativeHandler::GetModuleSystem function in extensions/renderer/v8_context_native_handler.cc in Google Chrome before 44.0.2403.89 allows remote attackers to inject arbitrary web script or HTML by leveraging the lack of a certain V8 context restriction, aka a Blink "Universal XSS (UXSS)."
Red Hat
chromium-browser: Use-after-free in IndexedDB.
vendor_redhat·2015-07-21·CVSS 9.8
CVE-2015-1276 [CRITICAL] CWE-416 chromium-browser: Use-after-free in IndexedDB.
chromium-browser: Use-after-free in IndexedDB.
Use-after-free vulnerability in content/browser/indexed_db/indexed_db_backing_store.cc in the IndexedDB implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an abort action before a certain write operation.
Red Hat
chromium-browser: UXSS in Chrome for Android.
vendor_redhat·2015-07-21·CVSS 4.3
CVE-2015-1275 [MEDIUM] CWE-79 chromium-browser: UXSS in Chrome for Android.
chromium-browser: UXSS in Chrome for Android.
Cross-site scripting (XSS) vulnerability in org/chromium/chrome/browser/UrlUtilities.java in Google Chrome before 44.0.2403.89 on Android allows remote attackers to inject arbitrary web script or HTML via a crafted intent: URL, as demonstrated by a trailing alert(document.cookie);// substring, aka "Universal XSS (UXSS)."
Statement: Not vulnerable. This issue does not affect the version of chromium-browser package as shipped with Red Hat Enterprise Linux 6 since this flaw only affects Android versions of the browser.
Package: chromium-browser (Red Hat Enterprise Linux 6) - Not affected
Red Hat
ICU: Uninitialized memory read fixed in Chrome 44.0.2403.89
vendor_redhat·2015-07-21·CVSS 6.8
CVE-2015-1270 [MEDIUM] ICU: Uninitialized memory read fixed in Chrome 44.0.2403.89
ICU: Uninitialized memory read fixed in Chrome 44.0.2403.89
The ucnv_io_getConverterName function in common/ucnv_io.cpp in International Components for Unicode (ICU), as used in Google Chrome before 44.0.2403.89, mishandles converter names with initial x- substrings, which allows remote attackers to cause a denial of service (read of uninitialized memory) or possibly have unspecified other impact via a crafted file.
Statement: This issue did not affect the versions of icu as shipped with Red Hat Enterprise Linux 5 and 6. This issue affects the versions of icu as shipped with Red Hat Enterprise Linux 7. Red Hat Product Security has rated this issue as having Low security impact.
Package: icu (Red Hat Enterprise Linux 5) - Not affected
Package: icu (Red Hat Enterprise Linux 6) - Not affe
Red Hat
chromium-browser: Heap-buffer-overflow in expat.
vendor_redhat·2015-07-21·CVSS 6.8
CVE-2015-1283 [MEDIUM] CWE-122 chromium-browser: Heap-buffer-overflow in expat.
chromium-browser: Heap-buffer-overflow in expat.
Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0, as used in Google Chrome before 44.0.2403.89 and other products, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted XML data, a related issue to CVE-2015-2716.
Red Hat
chromium-browser: Information leak in XSS auditor.
vendor_redhat·2015-07-21·CVSS 5.0
CVE-2015-1285 [MEDIUM] CWE-200 chromium-browser: Information leak in XSS auditor.
chromium-browser: Information leak in XSS auditor.
The XSSAuditor::canonicalize function in core/html/parser/XSSAuditor.cpp in the XSS auditor in Blink, as used in Google Chrome before 44.0.2403.89, does not properly choose a truncation point, which makes it easier for remote attackers to obtain sensitive information via an unspecified linear-time attack.
Red Hat
chromium-browser: Use-after-free related to unexpected GPU process termination in unspecified
vendor_redhat·2015-07-21·CVSS 7.5
CVE-2015-1272 [HIGH] CWE-416 chromium-browser: Use-after-free related to unexpected GPU process termination in unspecified
chromium-browser: Use-after-free related to unexpected GPU process termination in unspecified
Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging the continued availability of a GPUChannelHost data structure during Blink shutdown, related to content/browser/gpu/browser_gpu_channel_host_factory.cc and content/renderer/render_thread_impl.cc.
Red Hat
chromium-browser: SOP bypass with CSS in unspecified
vendor_redhat·2015-07-21·CVSS 4.3
CVE-2015-1287 [MEDIUM] chromium-browser: SOP bypass with CSS in unspecified
chromium-browser: SOP bypass with CSS in unspecified
Blink, as used in Google Chrome before 44.0.2403.89, enables a quirks-mode exception that limits the cases in which a Cascading Style Sheets (CSS) document is required to have the text/css content type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site, related to core/fetch/CSSStyleSheetResource.cpp.
Red Hat
chromium-browser: Use-after-free in pdfium.
vendor_redhat·2015-07-21·CVSS 6.8
CVE-2015-1282 [MEDIUM] CWE-416 chromium-browser: Use-after-free in pdfium.
chromium-browser: Use-after-free in pdfium.
Multiple use-after-free vulnerabilities in fpdfsdk/src/javascript/Document.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to the (1) Document::delay and (2) Document::DoFieldDelay functions.
Red Hat
chromium-browser: Settings allowed executable files to run immediately after download in unsepcified
vendor_redhat·2015-07-21·CVSS 6.8
CVE-2015-1274 [MEDIUM] chromium-browser: Settings allowed executable files to run immediately after download in unsepcified
chromium-browser: Settings allowed executable files to run immediately after download in unsepcified
Google Chrome before 44.0.2403.89 does not ensure that the auto-open list omits all dangerous file types, which makes it easier for remote attackers to execute arbitrary code by providing a crafted file and leveraging a user's previous "Always open files of this type" choice, related to download_commands.cc and download_prefs.cc.
Red Hat
chromium-browser: Use-after-free in blink.
vendor_redhat·2015-07-21·CVSS 7.5
CVE-2015-1284 [HIGH] CWE-416 chromium-browser: Use-after-free in blink.
chromium-browser: Use-after-free in blink.
The LocalFrame::isURLAllowed function in core/frame/LocalFrame.cpp in Blink, as used in Google Chrome before 44.0.2403.89, does not properly check for a page's maximum number of frames, which allows remote attackers to cause a denial of service (invalid count value and use-after-free) or possibly have unspecified other impact via crafted JavaScript code that makes many createElement calls for IFRAME elements.
Red Hat
chromium-browser: URL spoofing using pdf files in unspecified
vendor_redhat·2015-07-21·CVSS 4.3
CVE-2015-1278 [MEDIUM] chromium-browser: URL spoofing using pdf files in unspecified
chromium-browser: URL spoofing using pdf files in unspecified
content/browser/web_contents/web_contents_impl.cc in Google Chrome before 44.0.2403.89 does not ensure that a PDF document's modal dialog is closed upon navigation to an interstitial page, which allows remote attackers to spoof URLs via a crafted document, as demonstrated by the alert_dialog.pdf document.
Red Hat
chromium-browser: Memory corruption in skia
vendor_redhat·2015-07-21·CVSS 7.5
CVE-2015-1280 [HIGH] chromium-browser: Memory corruption in skia
chromium-browser: Memory corruption in skia
SkPictureShader.cpp in Skia, as used in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging access to a renderer process and providing crafted serialized data.
Red Hat
chromium-browser: Heap-buffer-overflow in pdfium.
vendor_redhat·2015-07-21·CVSS 6.8
CVE-2015-1273 [MEDIUM] CWE-122 chromium-browser: Heap-buffer-overflow in pdfium.
chromium-browser: Heap-buffer-overflow in pdfium.
Heap-based buffer overflow in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid JPEG2000 data in a PDF document.
Red Hat
chromium-browser: Heap-buffer-overflow in pdfium
vendor_redhat·2015-07-21·CVSS 6.8
CVE-2015-1271 [MEDIUM] CWE-122 chromium-browser: Heap-buffer-overflow in pdfium
chromium-browser: Heap-buffer-overflow in pdfium
PDFium, as used in Google Chrome before 44.0.2403.89, does not properly handle certain out-of-memory conditions, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted PDF document that triggers a large memory allocation.
No detection rules found.
No public exploits indexed.
Zscaler
Zscaler found Multiple Security Vulnerabilities | 07-21-2015
blogs_zscaler·CVSS 9.3
[CRITICAL] Zscaler found Multiple Security Vulnerabilities | 07-21-2015
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
Zscaler
Zscaler found IE & MS Office Vulnerabilities | 07-14-2015
blogs_zscaler
Zscaler found IE & MS Office Vulnerabilities | 07-14-2015
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
Bugzilla
CVE-2015-5605 chromium-browser: v8 denial of service
bugzilla·2015-07-23·CVSS 5.0
CVE-2015-5605 [MEDIUM] CVE-2015-5605 chromium-browser: v8 denial of service
CVE-2015-5605 chromium-browser: v8 denial of service
A vulnerability was found in Google Chrome up to 43.0.2357.134. It has been classified as problematic. Affected is an unknown function of the component v8. The manipulation with an unknown input leads to a denial of service vulnerability.
Additional information:
http://www.scip.ch/en/?vuldb.76794
Discussion:
This issue was is tracked in chromium tracker via the following bug:
https://code.google.com/p/chromium/issues/detail?id=512110
https://code.google.com/p/chromium/issues/detail?id=469480
This is fixed in google-chrome 44.0.2403.89 but was not listed in the chrome advisory web page.
---
This issue has been addressed in the following products:
Supplementary for Red Hat Enterprise Linux 6
Via RHSA-2015:1499 https://rhn.redhat
Bugzilla
CVE-2015-1270 ICU: Uninitialized memory read fixed in Chrome 44.0.2403.89
bugzilla·2015-07-22·CVSS 6.8
CVE-2015-1270 [MEDIUM] CVE-2015-1270 ICU: Uninitialized memory read fixed in Chrome 44.0.2403.89
CVE-2015-1270 ICU: Uninitialized memory read fixed in Chrome 44.0.2403.89
An unspecified uninitialized memory read flaw was found in the ICU component of the Chromium browser.
Upstream bug: https://code.google.com/p/chromium/issues/detail?id=444573
External References:
http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
Discussion:
This issue has been addressed in the following products:
Supplementary for Red Hat Enterprise Linux 6
Via RHSA-2015:1499 https://rhn.redhat.com/errata/RHSA-2015-1499.html
---
Upstream ICU bug at:
http://bugs.icu-project.org/trac/ticket/11696
Commit:
http://bugs.icu-project.org/trac/changeset/37486/
---
Statement:
This issue did not affect the versions of icu as shipped with Red Hat Enterprise Linux 5 and 6. This issue aff
Bugzilla
CVE-2015-1288 chromium-browser: Spell checking dictionaries fetched over HTTP in unspecified
bugzilla·2015-07-22·CVSS 6.8
CVE-2015-1288 [MEDIUM] CVE-2015-1288 chromium-browser: Spell checking dictionaries fetched over HTTP in unspecified
CVE-2015-1288 chromium-browser: Spell checking dictionaries fetched over HTTP in unspecified
It was reported that spell checking dictionaries were fetched over http before
Chrome 44.0.2403.89.
Upstream bug: https://code.google.com/p/chromium/issues/detail?id=479162
External References:
http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
Discussion:
This issue has been addressed in the following products:
Supplementary for Red Hat Enterprise Linux 6
Via RHSA-2015:1499 https://rhn.redhat.com/errata/RHSA-2015-1499.html
Bugzilla
CVE-2015-1274 chromium-browser: Settings allowed executable files to run immediately after download in unsepcified
bugzilla·2015-07-22·CVSS 6.8
CVE-2015-1274 [MEDIUM] CVE-2015-1274 chromium-browser: Settings allowed executable files to run immediately after download in unsepcified
CVE-2015-1274 chromium-browser: Settings allowed executable files to run immediately after download in unsepcified
It was reported that before Chrome 44.0.2403.89 settings allowed executable
files to run immediately after download.
Upstream bug: https://code.google.com/p/chromium/issues/detail?id=461858
External References:
http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
Discussion:
This issue has been addressed in the following products:
Supplementary for Red Hat Enterprise Linux 6
Via RHSA-2015:1499 https://rhn.redhat.com/errata/RHSA-2015-1499.html
2015-07-14
Published