HIGH✓ PATCH🇬🇧 English

CVE-2014-1763

CVSS 10.0v2.0pub. 2014-04-27upd. 2026-05-06

Use-after-free vulnerability in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism via unspecified vectors, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2014.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Microsoft Internet Explorer

    APP
    Microsoft
    10119
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
RCE
CWE
Referencje

Powiązane podatności

CVE-2015-0313CRITICAL9.8⚠ KEVten sam produkt

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 o...

CVE-2015-0311CRITICAL9.8⚠ KEVten sam produkt

Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287...

CVE-2014-1776CRITICAL9.8⚠ KEVten sam produkt

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute ar...

CVE-2013-0022CRITICAL9.0ten sam produkt

Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary cod...

CVE-2012-4787CRITICAL9.0ten sam produkt

Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitr...