Microsoft Internet Explorer Object Access Flaw Lets Remote Users Execute Arbitrary Code : 8/18/2015 8:08:13 PM

Trial offer - 3 Months of GlowHost goodness for just $1.00 - Choose any shared plan for just 1 buck.
From our sponsors
 

 

Vulnerability Databse
This module replaces the description field of a feed to the page it links to (in addition, it wipes out the content:encoded field), so you can get its full text.

Microsoft Internet Explorer Object Access Flaw Lets Remote Users Execute Arbitrary Code
8/18/2015 12:00:00 AM

Microsoft Internet Explorer Object Access Flaw Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1033317
SecurityTracker URL:  http://securitytracker.com/id/1033317
CVE Reference:   CVE-2015-2502   (Links to External Site)
Date:  Aug 18 2015
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 7, 8, 9, 10, 11
Description:   A vulnerability was reported in Microsoft Internet Explorer. A remote user can cause arbitrary code to be executed on the target user's system.

A remote user can create a specially crafted web page that, when loaded by the target user, will trigger a memory corruption error and execute arbitrary code on the target user's system.

This vulnerability is being actively exploited.

Clement Lecigne of Google Inc. reported this vulnerability.

Impact:   A remote user can create a web page that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution:   The vendor has issued a fix.

A patch matrix is available in the vendor advisory.

The Microsoft advisory is available at:

https://technet.microsoft.com/library/security/ms15-093

Vendor URL:  technet.microsoft.com/library/security/ms15-093 (Links to External Site)
Cause:   Access control error
Underlying OS:   Windows (2008), Windows (2012), Windows (7), Windows (8), Windows (10), Windows (Vista)

Message History:   None.

 

You are receiving this email because you subscribed to this feed at feedmyinbox.com

If you no longer wish to receive these emails, you can unsubscribe from this feed, or manage all your subscriptions

Diberdayakan oleh Blogger.