Vulnerability Manager Plus

Security Update for Windows Server 2012 R2 (KB3019978)

Risk Information

Base Score

7.8

MODERATE

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

92.494%

CVE Information

Source CVE
CVE-2015-0016

Associated CVE
CVE-2015-0016

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
16807

Patch Description
Security Update for Windows Server 2012 R2 (KB3019978)

References

http://blog.trendmicro.com/trendlabs-security-intelligence/cve-2015-0016-escaping-the-internet-explorer-sandbox/
http://packetstormsecurity.com/files/130201/MS15-004-Microsoft-Remote-Desktop-Services-Web-Proxy-IE-Sandbox-Escape.html
http://secunia.com/advisories/62076
http://technet.microsoft.com/security/bulletin/MS15-004
http://www.exploit-db.com/exploits/35983
http://www.securityfocus.com/bid/71965
http://www.securitytracker.com/id/1031524
https://exchange.xforce.ibmcloud.com/vulnerabilities/99515
https://exchange.xforce.ibmcloud.com/vulnerabilities/99516