| CVE-2015-2359 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in the web applications in Microsoft Exchange Server 2013 Cumulative Update 8 allows remote attackers to inject arbitrary web script or HTML via unspecified v… |
| CVE-2015-1771 |
medium |
— |
6.8 |
|
|
microsoft |
11y ago |
Cross-site request forgery (CSRF) vulnerability in the web applications in Microsoft Exchange Server 2013 SP1 and Cumulative Update 8 allows remote attackers to hijack the authentication of arbitrary… |
| CVE-2015-1766 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1765 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 9 through 11 allows remote attackers to read the browser history via a crafted web site. |
| CVE-2015-1764 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
The web applications in Microsoft Exchange Server 2013 SP1 and Cumulative Update 8 allow remote attackers to bypass the Same Origin Policy and send HTTP traffic to intranet servers via a crafted requ… |
| CVE-2015-1760 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Office Compatibility Pack SP3, Office 2010 SP2, Office 2013 SP1, and Office 2013 RT SP1 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office… |
| CVE-2015-1759 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Office Compatibility Pack SP3 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." |
| CVE-2015-1757 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in adfs/ls in Active Directory Federation Services (AD FS) in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 allows remote attackers to inject a… |
| CVE-2015-1755 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… |
| CVE-2015-1754 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2015-1753 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1752 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1751 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1750 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1748 |
medium |
— |
6.8 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability," a different vulnerability tha… |
| CVE-2015-1747 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1745 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1744 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1743 |
medium |
— |
5.1 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability," a different vulnerability tha… |
| CVE-2015-1742 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1741 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1740 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1739 |
medium |
— |
6.8 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability." |
| CVE-2015-1737 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… |
| CVE-2015-1736 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… |
| CVE-2015-1735 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1732 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1731 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… |
| CVE-2015-1730 |
critical |
— |
10.0 |
EXP |
|
microsoft |
11y ago |
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2015-1728 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Windows Media Player 10 through 12 allows remote attackers to execute arbitrary code via a crafted DataObject on a web site, aka "Windows Media Player RCE via DataObject Vulnerability." |
| CVE-2015-1687 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrup… |
| CVE-2015-1718 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1717 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1715 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Silverlight 5 before 5.1.40416.00 allows remote attackers to bypass intended integrity-level restrictions via a crafted Silverlight application, aka "Microsoft Silverlight Out of Browser Ap… |
| CVE-2015-1714 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… |
| CVE-2015-1713 |
medium |
— |
6.8 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability." |
| CVE-2015-1712 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2015-1711 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1710 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1709 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1708 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2015-1706 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1705 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1704 |
medium |
— |
6.8 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability," a different vulnerability tha… |
| CVE-2015-1703 |
medium |
— |
6.8 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability," a different vulnerability tha… |
| CVE-2015-1700 |
medium |
— |
6.0 |
|
|
microsoft |
11y ago |
Microsoft SharePoint Server 2007 SP3, SharePoint Foundation 2010 SP2, SharePoint Server 2010 SP2, and SharePoint Foundation 2013 SP1 allow remote authenticated users to execute arbitrary code via cra… |
| CVE-2015-1694 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1692 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 7 through 11 allows user-assisted remote attackers to read the clipboard contents via crafted web script, aka "Internet Explorer Clipboard Information Disclosure Vulnerabi… |
| CVE-2015-1691 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption… |
| CVE-2015-1689 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1688 |
medium |
— |
6.8 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability." |
| CVE-2015-1686 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
The Microsoft (1) VBScript 5.6 through 5.8 and (2) JScript 5.6 through 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to bypass the ASLR protection … |
| CVE-2015-1685 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Internet Explorer ASLR Bypass." |
| CVE-2015-1684 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
VBScript.dll in the Microsoft VBScript 5.6 through 5.8 engine, as used in Internet Explorer 8 through 11 and other products, allows remote attackers to bypass the ASLR protection mechanism via a craf… |
| CVE-2015-1683 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Office 2007 SP3 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." |
| CVE-2015-1682 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 SP1, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1, Office 2013 RT SP1, Excel 2013 RT SP1, PowerPoint 2… |
| CVE-2015-1673 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
The Windows Forms (aka WinForms) libraries in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 allow user-assisted remote attackers to execute arbitrary code via a craf… |
| CVE-2015-1672 |
medium |
— |
5.0 |
|
|
microsoft |
11y ago |
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 allows remote attackers to cause a denial of service (recursion and performance degradation) via crafted encrypted data in an XM… |
| CVE-2015-1670 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
The Windows DirectWrite library, as used in Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2, allows remote attackers to obtain sensitive information from process memory via a c… |
| CVE-2015-1658 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1668 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… |
| CVE-2015-1667 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1666 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1665 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1662 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1661 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Internet Explorer ASLR Bypass Vulnerability." |
| CVE-2015-1660 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2015-1659 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1657 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1653 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2013 SP1 and SharePoint Server 2013 SP1 allows remote attackers to inject arbitrary web script or HTML via a crafted reques… |
| CVE-2015-1652 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1651 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Use-after-free vulnerability in Microsoft Word 2007 SP3, Word Viewer, and Office Compatibility Pack SP3 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft… |
| CVE-2015-1650 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on Share… |
| CVE-2015-1649 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office… |
| CVE-2015-1646 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Microsoft XML Core Services (aka MSXML) 3.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted DTD, aka "MSXML3 Same Origin Policy SFB Vulnerabili… |
| CVE-2015-1640 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in Microsoft Project Server 2010 SP2 and 2013 SP1 allows remote attackers to inject arbitrary web script or HTML via a crafted request, aka "Microsoft SharePo… |
| CVE-2015-1639 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in Microsoft Office for Mac 2011 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Microsoft Outlook App for Mac XS… |
| CVE-2015-1634 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1632 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in errorfe.aspx in Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to inject arbitrary web script … |
| CVE-2015-1631 |
medium |
— |
5.0 |
|
|
microsoft |
11y ago |
Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to spoof meeting organizers via unspecified vectors, aka "Exchange Forged Meeting Request Spoofing Vulnerability." |
| CVE-2015-1630 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to inject arbitrary web script or HTML via a cr… |
| CVE-2015-1629 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to inject arbitrary web script or HTML via a cr… |
| CVE-2015-1628 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Cross-site scripting (XSS) vulnerability in Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to inject arbitrary web script or HTML via a cr… |
| CVE-2015-1627 |
medium |
— |
4.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer Elevation of Privilege Vulnerability." |
| CVE-2015-1626 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1625 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1624 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… |
| CVE-2015-1623 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-1622 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… |
| CVE-2015-0100 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… |
| CVE-2015-0099 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-0097 |
critical |
— |
10.0 |
EXP |
|
microsoft |
11y ago |
Microsoft Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Excel 2010 SP2, PowerPoint 2010 SP2, and Word 2010 SP2 allow remote attackers to execute arbitrary code via a crafted Office document, ak… |
| CVE-2015-0086 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 Gold and SP1, Word 2013 RT Gold and SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2… |
| CVE-2015-0085 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Use-after-free vulnerability in Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 Gold an… |
| CVE-2015-0056 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… |
| CVE-2015-0032 |
critical |
— |
9.3 |
|
|
microsoft |
11y ago |
vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 8 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (mem… |
| CVE-2015-0070 |
medium |
— |
4.3 |
|
|
microsoft |
12y ago |
Microsoft Internet Explorer 6 through 11 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclo… |
| CVE-2015-0069 |
medium |
— |
4.3 |
|
|
microsoft |
12y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Internet Explorer ASLR Bypass Vulnerability." |
| CVE-2015-0068 |
critical |
— |
9.3 |
|
|
microsoft |
12y ago |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… |
| CVE-2015-0067 |
critical |
— |
9.3 |
|
|
microsoft |
12y ago |
Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrup… |
