ID CVE-2014-1776
Summary Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via vectors related to the CMarkup::IsConnectedToPrimaryMarkup function, as exploited in the wild in April 2014. NOTE: this issue originally emphasized VGX.DLL, but Microsoft clarified that "VGX.DLL does not contain the vulnerable code leveraged in this exploit. Disabling VGX.DLL is an exploit-specific workaround that provides an immediate, effective workaround to help block known attacks."
References
Vulnerable Configurations
  • Microsoft Internet Explorer 6
    cpe:2.3:a:microsoft:internet_explorer:6
  • Microsoft Internet Explorer 7
    cpe:2.3:a:microsoft:internet_explorer:7
  • Microsoft Internet Explorer 8
    cpe:2.3:a:microsoft:internet_explorer:8
  • Microsoft Internet Explorer 9
    cpe:2.3:a:microsoft:internet_explorer:9
  • Microsoft Internet Explorer 10
    cpe:2.3:a:microsoft:internet_explorer:10
  • Microsoft Internet Explorer 11
    cpe:2.3:a:microsoft:internet_explorer:11
CVSS
Base: 10.0 (as of 02-09-2016 - 17:49)
Impact:
Exploitability:
CWE CWE-416
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
msbulletin via4
bulletin_id MS14-021
bulletin_url
date 2014-05-01T00:00:00
impact Remote Code Execution
knowledgebase_id 2965111
knowledgebase_url
severity Critical
title Security Update for Internet Explorer
nessus via4
  • NASL family Windows
    NASL id SMB_KB2963983.NASL
    description The remote host is missing one of the workarounds referenced in Microsoft Security Advisory 2963983. The remote Internet Explorer install is affected by an unspecified use-after-free vulnerability related to the VML and Flash components. By exploiting this flaw, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application.
    last seen 2017-10-29
    modified 2017-08-30
    plugin id 73739
    published 2014-04-28
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=73739
    title MS KB2963983: Vulnerability in Internet Explorer Could Allow Remote Code Execution
  • NASL family Windows : Microsoft Bulletins
    NASL id SMB_NT_MS14-021.NASL
    description The remote host is missing Internet Explorer (IE) Security Update 2965111. The installed version of IE is affected by a memory corruption vulnerability that could allow an attacker to execute arbitrary code on the remote host.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 73805
    published 2014-05-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=73805
    title MS14-021: Security Update for Internet Explorer (2965111)
refmap via4
bid 67075
cert-vn VU#222929
confirm
misc
ms MS14-021
osvdb 106311
sectrack 1030154
secunia 57908
the hacker news via4
Last major update 06-09-2016 - 09:15
Published 27-04-2014 - 06:55
Last modified 12-10-2018 - 18:06
Back to Top