CVSS: 9.3EPSS: 24%CPEs: 3EXPL: 0CVE-2015-0042 – Microsoft Internet Explorer SVG Marker Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-0042
10 Feb 2015 — Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-0038 and CVE-2015-0046. Microsoft Internet Explorer 9 hasta 11 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un sitio web manipulado, también conocido como 'vulnerabilida... • http://www.securityfocus.com/bid/72412 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 24%CPEs: 3EXPL: 0CVE-2015-0046 – Microsoft Internet Explorer Type Confusion Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2015-0046
10 Feb 2015 — Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-0038 and CVE-2015-0042. Microsoft Internet Explorer 9 hasta 11 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un sitio web manipulado, también conocido como 'vulnerabilida... • http://www.securityfocus.com/bid/72416 • CWE-399: Resource Management Errors •
CVSS: 6.1EPSS: 80%CPEs: 3EXPL: 4CVE-2015-0072 – Microsoft Internet Explorer Universal XSS Proof of Concept
https://notcve.org/view.php?id=CVE-2015-0072
07 Feb 2015 — Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy and inject arbitrary web script or HTML via vectors involving an IFRAME element that triggers a redirect, a second IFRAME element that does not trigger a redirect, and an eval of a WindowProxy object, aka "Universal XSS (UXSS)." Vulnerabilidad de XSS en Microsoft Internet Explorer 9 hasta la versión 11 permite a atacantes remotos eludir la Same Origin Policy e inyecta... • https://packetstorm.news/files/id/130308 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 93%CPEs: 23EXPL: 5CVE-2015-0313 – Adobe Flash Player Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2015-0313
02 Feb 2015 — Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in February 2015, a different vulnerability than CVE-2015-0315, CVE-2015-0320, and CVE-2015-0322. Vulnerabilidad de uso después de liberación de memoria en Adobe Flash Player en versiones anteriores a 13.0.0.269 y 14.x hasta la versión 16.x en versio... • https://packetstorm.news/files/id/131189 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 6%CPEs: 17EXPL: 0CVE-2015-0312 – flash-plugin: multiple critical vulnerabilities (APSA15-01)(APSB15-03)
https://notcve.org/view.php?id=CVE-2015-0312
28 Jan 2015 — Double free vulnerability in Adobe Flash Player before 13.0.0.264 and 14.x through 16.x before 16.0.0.296 on Windows and OS X and before 11.2.202.440 on Linux allows attackers to execute arbitrary code via unspecified vectors. Vulnerabilidad de doble liberación en Adobe Flash Player anterior a 13.0.0.264 y 14.x hasta 16.x anterior a 16.0.0.296 en Windows y OS X y anterior a 11.2.202.440 en Linux permite a atacantes ejecutar código arbitrario a través de vectores no especificados. The flash-plugin package co... • http://helpx.adobe.com/security/products/flash-player/apsb15-03.html • CWE-415: Double Free •
CVSS: 10.0EPSS: 93%CPEs: 20EXPL: 3CVE-2015-0311 – Adobe Flash Player Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-0311
23 Jan 2015 — Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015. Vulnerabilidad no especificada en Adobe Flash Player hasta 13.0.0.262 y 14.x, 15.x, y 16.x hasta 16.0.0.287 en Windows y OS X y hasta 11.2.202.438 en Linux permite a atacantes remotos ejecutar código arbitrario a través de vectores de... • https://packetstorm.news/files/id/130788 •
CVSS: 6.1EPSS: 33%CPEs: 4EXPL: 0CVE-2014-6328
https://notcve.org/view.php?id=CVE-2014-6328
11 Dec 2014 — Microsoft Internet Explorer 8 through 11 allows remote attackers to bypass the XSS filter via a crafted attribute of an element in an HTML document, aka "Internet Explorer XSS Filter Bypass Vulnerability," a different vulnerability than CVE-2014-6365. Microsoft Internet Explorer 8 hasta 11 permite a atacantes remotos evadir el filtro XSS a través de un atributo manipulado de un elemento en un documento HTML, también conocido como 'Vulnerabilidad en evadir el filtro XSS de Internet Explorer', una vulnerabili... • https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-080 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 32%CPEs: 9EXPL: 2CVE-2014-6363 – Microsoft Internet Explorer 8/9/10/11 / IIS / CScript.exe/WScript.exe VBScript - CRegExp..Execute Use of Uninitialized Memory (MS14-080/MS14-084)
https://notcve.org/view.php?id=CVE-2014-6363
11 Dec 2014 — vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 6 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability." vbscript.dll en Microsoft VBScript 5.6 hasta 5.8, utilizado con Internet Explorer 6 hasta 11 y otros productos, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria... • https://packetstorm.news/files/id/139598 • CWE-399: Resource Management Errors •
CVSS: 6.1EPSS: 23%CPEs: 4EXPL: 1CVE-2014-6365 – Microsoft MS14-080 Proof of Concept
https://notcve.org/view.php?id=CVE-2014-6365
11 Dec 2014 — Microsoft Internet Explorer 8 through 11 allows remote attackers to bypass the XSS filter via a crafted attribute of an element in an HTML document, aka "Internet Explorer XSS Filter Bypass Vulnerability," a different vulnerability than CVE-2014-6328. Microsoft Internet Explorer 8 hasta 11 permite a atacantes remotos evadir el filtro XSS a través de un atributo manipulado de un elemento en un documento HTML, también conocido como 'Vulnerabilidad en evadir el filtro XSS de Internet', una vulnerabilidad difer... • https://packetstorm.news/files/id/129960 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 35%CPEs: 3EXPL: 0CVE-2014-6369 – Microsoft Internet Explorer CTableSection Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-6369
11 Dec 2014 — Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." Microsoft Internet Explorer 9 hasta 11 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un sitio web manipulado, también conocido como 'vulnerabilidad de la corrupción de memoria de Internet Explorer'. This vulner... • http://www.securityfocus.com/bid/71452 • CWE-20: Improper Input Validation •