Lucene search
Ashutosh Mehra (https://twitter.com/ashutoshmehra)ZDI-15-342HistoryJul 20, 2015 - 12:00 a.m.
Microsoft Internet Explorer EditWith Broker API Sandbox Escape Vulnerability
2015-07-2000:00:00
Ashutosh Mehra (https://twitter.com/ashutoshmehra)
www.zerodayinitiative.com
9
0.013 Low
EPSS
Percentile
85.7%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer running in either Protected Mode or Enhanced Protected Mode. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the EditWith function of the document broker. The document broker can be induced to use a file path from a registry key that is controlled by the low integrity process. This can be changed while the broker is attempting to use it, resulting in a race condition and the execution of arbitrary executables at medium integrity.
Related
cve
cve
CVE-2015-2402
2015-07-14 21:59:24
symantec
symantec
Microsoft Internet Explorer CVE-2015-2402 Privilege Escalation Vulnerability
2015-07-14 00:00:00
cvelist
cvelist
CVE-2015-2402
2015-07-14 21:00:00
prion
prion
Privilege escalation
2015-07-14 21:59:00
nvd
nvd
CVE-2015-2402
2015-07-14 21:59:24
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Information Disclosure (MS15-065: CVE-2015-2402)
2015-07-14 00:00:00
kaspersky
kaspersky
KLA10634 Multiple vulnerabilities in Microsoft Internet Explorer
2015-07-14 00:00:00
mskb
mskb
MS15-065: Security update for Internet Explorer: July 14, 2015
2015-07-14 00:00:00
openvas
openvas
nessus
nessus
MS15-065: Cumulative Security Update for Internet Explorer (3076321)
2015-07-15 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2015-07-19 00:00:00