Scripting Engine Memory Corruption Vulnerability in Microsoft Internet Explorer
CVE-2015-6089

Currently unrated

Key Information:

Vendor: Microsoft
Status: Jscript; Vbscript
Vendor: CVE Published:; 11 November 2015

What is CVE-2015-6089?

This vulnerability affects the VBScript and JScript engines in Microsoft Internet Explorer versions 8 through 11. It can be exploited by remote attackers who leverage a specially crafted web page, enabling them to execute arbitrary code on the affected system or trigger memory corruption that leads to a denial of service. This poses significant risks as it could allow an attacker to gain control over the victim's system.

References

http://www.securitytracker.com/id/1034112

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

28% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2015
Vulnerability Reserved
Aug 14, 2015