Home

CVE-2015-2502

Description

Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka Memory Corruption Vulnerability, as exploited in the wild in August 2015.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
22.563

Associated Vulnerability

VulnerabilityOS Platform
Security Update for Internet Explorer 7 for Windows Vista (KB3087985)Windows
Security Update for Internet Explorer 7 for Windows Server 2008 (KB3087985)Windows
Security Update for Internet Explorer 7 for Windows Vista for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 7 for Windows Server 2008 x64 Edition (KB3087985)Windows
Security Update for Internet Explorer 8 for Windows Vista (KB3087985)Windows
Security Update for Internet Explorer 8 for Windows Server 2008 (KB3087985)Windows
Security Update for Internet Explorer 8 for Windows 7 (KB3087985)Windows
Security Update for Internet Explorer 8 for Windows Vista for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 8 for Windows Server 2008 x64 Edition (KB3087985)Windows
Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 8 for Windows Server 2008 R2 x64 Edition (KB3087985)Windows
Security Update for Internet Explorer 9 for Windows Vista (KB3087985)Windows
Security Update for Internet Explorer 9 for Windows Server 2008 (KB3087985)Windows
Security Update for Internet Explorer 9 for Windows 7 (KB3087985)Windows
Security Update for Internet Explorer 9 for Windows Vista for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 9 for Windows Server 2008 x64 Edition (KB3087985)Windows
Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 9 for Windows Server 2008 R2 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 10 for Windows 7 (KB3087985)Windows
Security Update for Internet Explorer 10 for Windows 8 (KB3087985)Windows
Security Update for Internet Explorer 10 for Windows 7 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 10 for Windows Server 2008 R2 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 10 for Windows 8 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 10 for Windows Server 2012 (KB3087985)Windows
Security Update for Internet Explorer 11 for Windows 7 (KB3087985)Windows
Security Update for Internet Explorer 11 for Windows 8.1 (KB3087985)Windows
Security Update for Internet Explorer 11 for Windows 7 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 11 for Windows Server 2008 R2 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 11 for Windows 8.1 for x64-based Systems (KB3087985)Windows
Security Update for Internet Explorer 11 for Windows Server 2012 R2 (KB3087985)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-18734Security Update for Internet Explorer 7 for Windows Vista (KB3087985)
PATCH-18735Security Update for Internet Explorer 7 for Windows Server 2008 (KB3087985)
PATCH-18736Security Update for Internet Explorer 7 for Windows Vista for x64-based Systems (KB3087985)
PATCH-18737Security Update for Internet Explorer 7 for Windows Server 2008 x64 Edition (KB3087985)
PATCH-18738Security Update for Internet Explorer 8 for Windows Vista (KB3087985)
PATCH-18739Security Update for Internet Explorer 8 for Windows Server 2008 (KB3087985)
PATCH-18740Security Update for Internet Explorer 8 for Windows 7 (KB3087985)
PATCH-18741Security Update for Internet Explorer 8 for Windows Vista for x64-based Systems (KB3087985)
PATCH-18742Security Update for Internet Explorer 8 for Windows Server 2008 x64 Edition (KB3087985)
PATCH-18743Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB3087985)
PATCH-18744Security Update for Internet Explorer 8 for Windows Server 2008 R2 x64 Edition (KB3087985)
PATCH-18745Security Update for Internet Explorer 9 for Windows Vista (KB3087985)
PATCH-18746Security Update for Internet Explorer 9 for Windows Server 2008 (KB3087985)
PATCH-18747Security Update for Internet Explorer 9 for Windows 7 (KB3087985)
PATCH-18748Security Update for Internet Explorer 9 for Windows Vista for x64-based Systems (KB3087985)
PATCH-18749Security Update for Internet Explorer 9 for Windows Server 2008 x64 Edition (KB3087985)
PATCH-18750Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB3087985)
PATCH-18751Security Update for Internet Explorer 9 for Windows Server 2008 R2 for x64-based Systems (KB3087985)
PATCH-18752Security Update for Internet Explorer 10 for Windows 7 (KB3087985)
PATCH-18753Security Update for Internet Explorer 10 for Windows 8 (KB3087985)
PATCH-18754Security Update for Internet Explorer 10 for Windows 7 for x64-based Systems (KB3087985)
PATCH-18755Security Update for Internet Explorer 10 for Windows Server 2008 R2 for x64-based Systems (KB3087985)
PATCH-18756Security Update for Internet Explorer 10 for Windows 8 for x64-based Systems (KB3087985)
PATCH-18757Security Update for Internet Explorer 10 for Windows Server 2012 (KB3087985)
PATCH-18760Security Update for Internet Explorer 11 for Windows 7 for x64-based Systems (KB3087985)
PATCH-18761Security Update for Internet Explorer 11 for Windows Server 2008 R2 for x64-based Systems (KB3087985)
PATCH-18762Security Update for Internet Explorer 11 for Windows 8.1 for x64-based Systems (KB3087985)
PATCH-18763Security Update for Internet Explorer 11 for Windows Server 2012 R2 (KB3087985)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234