Vulnerabilities > CVE-2014-6342 - Resource Management Errors vulnerability in Microsoft Internet Explorer 9
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-6348.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Msbulletin
| bulletin_id | MS14-065 |
| bulletin_url | |
| date | 2014-11-11T00:00:00 |
| impact | Remote Code Execution |
| knowledgebase_id | 3003057 |
| knowledgebase_url | |
| severity | Critical |
| title | Cumulative Security Update for Internet Explorer |
Nessus
| NASL family | Windows : Microsoft Bulletins |
| NASL id | SMB_NT_MS14-065.NASL |
| description | The version of Internet Explorer installed on the remote host is missing Cumulative Security Update 3003057. It is, therefore, affected by multiple vulnerabilities, the majority of which are remote code execution vulnerabilities. An attacker can exploit these by convincing a user to visit a specially crafted web page. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 79126 |
| published | 2014-11-12 |
| reporter | This script is Copyright (C) 2014-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/79126 |
| title | MS14-065: Cumulative Security Update for Internet Explorer (3003057) |
References
- http://www.securityfocus.com/bid/70341
- http://www.securityfocus.com/bid/70341
- http://www.securitytracker.com/id/1031185
- http://www.securitytracker.com/id/1031185
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-065
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-065