CVE-2015-6148
published 2015-12-09CVE-2015-6148: Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
PriorityP352critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
19.79%
97.1th percentile
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6156.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-8jwj-98gr-wqgp: Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corr
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2015-6148 [CRITICAL] CWE-119 GHSA-8jwj-98gr-wqgp: Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corr
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6156.
GHSA
GHSA-f7j7-q438-xgjx: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2015-6156 [CRITICAL] CWE-119 GHSA-f7j7-q438-xgjx: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a craf
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6148.
No detection rules found.
No public exploits indexed.
http://www.securitytracker.com/id/1034315http://www.securitytracker.com/id/1034316http://www.zerodayinitiative.com/advisories/ZDI-15-588https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-124https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-125http://www.securitytracker.com/id/1034315http://www.securitytracker.com/id/1034316http://www.zerodayinitiative.com/advisories/ZDI-15-588https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-124https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-125
2015-12-09
Published