CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
98.7%
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Internet Explorer Memory Corruption Vulnerability.”
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | internet_explorer | 9 | cpe:/a:microsoft:internet_explorer:9::: |
blog.skylined.nl/20161206001.html
packetstormsecurity.com/files/140050/Microsoft-Internet-Explorer-9-jscript9-JavaScriptStackWalker-Memory-Corruption.html
www.securitytracker.com/id/1032521
docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-056
www.exploit-db.com/exploits/40881/
www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1099