Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:microsoft:vbscript:5.8:-:x64:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2016-3207 |
The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3205 and CVE-2016-3206. Published: June 15, 2016; 9:59:13 PM -0400 |
V3.0: 7.5 HIGH V2.0: 7.6 HIGH |
CVE-2016-3206 |
The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3205 and CVE-2016-3207. Published: June 15, 2016; 9:59:12 PM -0400 |
V3.0: 7.5 HIGH V2.0: 7.6 HIGH |
CVE-2016-3205 |
The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3206 and CVE-2016-3207. Published: June 15, 2016; 9:59:11 PM -0400 |
V3.0: 7.5 HIGH V2.0: 7.6 HIGH |
CVE-2016-3202 |
The Microsoft (1) Chakra JavaScript, (2) JScript, and (3) VBScript engines, as used in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." Published: June 15, 2016; 9:59:09 PM -0400 |
V3.0: 7.5 HIGH V2.0: 7.6 HIGH |
CVE-2016-0189 |
The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0187. Published: May 10, 2016; 9:59:30 PM -0400 |
V3.0: 7.5 HIGH V2.0: 7.6 HIGH |
CVE-2016-0187 |
The Microsoft (1) JScript 5.8 and (2) VBScript 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0189. Published: May 10, 2016; 9:59:28 PM -0400 |
V3.0: 7.5 HIGH V2.0: 7.6 HIGH |
CVE-2016-0002 |
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." Published: January 13, 2016; 12:59:01 AM -0500 |
V3.0: 7.5 HIGH V2.0: 7.6 HIGH |
CVE-2015-6136 |
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." Published: December 09, 2015; 6:59:20 AM -0500 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2015-6135 |
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Scripting Engine Information Disclosure Vulnerability." Published: December 09, 2015; 6:59:19 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2015-6059 |
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Scripting Engine Information Disclosure Vulnerability." Published: October 13, 2015; 9:59:29 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2015-6055 |
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Filter arguments, aka "Scripting Engine Memory Corruption Vulnerability." Published: October 13, 2015; 9:59:25 PM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2015-6052 |
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript and JScript ASLR Bypass." Published: October 13, 2015; 9:59:23 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2015-2482 |
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted replace operation with a JavaScript regular expression, aka "Scripting Engine Memory Corruption Vulnerability." Published: October 13, 2015; 9:59:00 PM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2015-2372 |
vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 6 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability." Published: July 14, 2015; 5:59:07 PM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2015-1686 |
The Microsoft (1) VBScript 5.6 through 5.8 and (2) JScript 5.6 through 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript and JScript ASLR Bypass." Published: May 13, 2015; 6:59:17 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2015-1684 |
VBScript.dll in the Microsoft VBScript 5.6 through 5.8 engine, as used in Internet Explorer 8 through 11 and other products, allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "VBScript ASLR Bypass." Published: May 13, 2015; 6:59:15 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2015-0032 |
vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 8 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability." Published: March 11, 2015; 6:59:01 AM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2014-6363 |
vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 6 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability." Published: December 10, 2014; 7:59:13 PM -0500 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2014-0271 |
The VBScript engine in Microsoft Internet Explorer 6 through 11, and VBScript 5.6 through 5.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability." Published: February 11, 2014; 11:50:40 PM -0500 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2012-2523 |
Integer overflow in Microsoft Internet Explorer 8 and 9, JScript 5.8, and VBScript 5.8 on 64-bit platforms allows remote attackers to execute arbitrary code by leveraging an incorrect size calculation during object copying, aka "JavaScript Integer Overflow Remote Code Execution Vulnerability." Published: August 14, 2012; 9:55:01 PM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |