CVE-2014-6363

Currently unrated

Key Information:

Vendor: Microsoft
Status: Vbscript; Internet Explorer
Vendor: CVE Published:; 11 December 2014

Summary

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 6 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability."

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

https://www.exploit-db.com/exploits/40721/

exploitx_refsource_EXPLOIT-DB

https://www.verisign.com/en_US/security-services/security...

third-party-advisoryx_refsource_IDEFENSE

EPSS Score

91% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 11, 2014
Vulnerability Reserved
Sep 11, 2014

Collectors

NVD DatabaseMitre Database