Vulnerabilities > CVE-2014-4127 - Resource Management Errors vulnerability in Microsoft Internet Explorer
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |
Common Weakness Enumeration (CWE)
Msbulletin
bulletin_id | MS14-056 |
bulletin_url | |
date | 2014-10-14T00:00:00 |
impact | Remote Code Execution |
knowledgebase_id | 2987107 |
knowledgebase_url | |
severity | Critical |
title | Cumulative Security Update for Internet Explorer |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS14-056.NASL |
description | The remote host is missing Internet Explorer (IE) Security Update 2987107. The version of Internet Explorer installed on the remote host is affected by multiple vulnerabilities, the majority of which are remote code execution vulnerabilities. An attacker can exploit these by convincing a user to visit a specially crafted web page. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 78431 |
published | 2014-10-15 |
reporter | This script is Copyright (C) 2014-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/78431 |
title | MS14-056: Cumulative Security Update for Internet Explorer (2987107) |