PT-2014-1609 · Microsoft · Internet Explorer

Liang Chen

Published

2014-08-07

Updated

2018-10-12

CVE-2014-2819

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 7 through 11

Description The issue allows remote attackers to gain privileges via a crafted web site. Multiple elevation of privilege vulnerabilities exist in Internet Explorer, which could be used in conjunction with another vulnerability to elevate privileges and potentially execute arbitrary code. These vulnerabilities by themselves do not allow arbitrary code to be run, but they can be used to exploit other vulnerabilities with elevated privileges.

Recommendations For Microsoft Internet Explorer versions 7 through 11, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2015-00528

CVE-2014-2819

ZDI-14-292

Affected Products

Internet Explorer

PT-2014-1609 · Microsoft · Internet Explorer

CVE-2014-2819

Weakness Enumeration

Related Identifiers

Affected Products

References · 9