cbcvebase.
CVE-2015-2502
published 2015-08-19

CVE-2015-2502: Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web…

PriorityP183high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-05-04
Exploited in the wild
EPSS
51.13%
98.8th percentile
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerability," as exploited in the wild in August 2015.

Affected

5 ranges
VendorProductVersion rangeFixed in
microsoftinternet_explorer
microsoftinternet_explorer
microsoftinternet_explorer
microsoftinternet_explorer
microsoftinternet_explorer

Detection & IOCsextracted from sources · hover to see the quote

snort
SID 35536
snort
SID 35537
  • Exploit is delivered via a malicious webpage; detect drive-by download traffic patterns targeting IE7–IE11 user agents visiting attacker-controlled or compromised pages.
  • Monitor for exploit kit integration; after public disclosure, attack code was expected to be incorporated into exploit kits and attack frameworks.
  • Watch for malicious ad network traffic (malvertising) delivering IE exploit payloads to users of legitimate websites.
  • Talos Snort rules 35536–35537 are available on Snort.org / FireSIGHT Management Center for network-level detection of CVE-2015-2502 exploitation attempts.
  • ·Snort rules 35536–35537 are subject to change as additional vulnerability information becomes available; always pull the latest rule versions from the authoritative source.

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vulncheck8.8HIGH
cisa8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.