Information Disclosure in Microsoft XML Core Services by Remote Attackers
CVE-2015-2471

Currently unrated

Key Information:

Vendor

Microsoft
Status
Xml Core Services
Vendor
CVE Published:
15 August 2015

What is CVE-2015-2471?

Microsoft XML Core Services versions 3.0, 5.0, and 6.0 have a vulnerability that supports SSL 2.0, creating a pathway for remote attackers to compromise cryptographic protections. By leveraging network sniffing techniques, these attackers can execute decryption attacks to gain unauthorized access to sensitive information.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securitytracker.com/id/1033241
vdb-entryx_refsource_SECTRACK
https://docs.microsoft.com/en-us/security-updates/securit...
vendor-advisoryx_refsource_MS

EPSS Score

31% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.