Vulnerability

Microsoft Internet Explorer JScript9 Memory Corruption Vulnerability (CVE-2015-2419)

Publish date: October 13, 2015

SEVERITY

CRITICAL

//  ADVISORY DATE

30 SEP 2015


DESCRIPTION

Microsoft Internet Explorer is prone to a double free memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the user running the affected application. Failed attempts will likely cause a denial of service condition.

TREND MICRO PROTECTION INFORMATION

Vulnerability Protection in Trend Micro Deep Security protects user systems from threats that may leverage this vulnerability with the following DPI rule:

  • 1006868 - Microsoft Internet Explorer JScript9 Memory Corruption Vulnerability (CVE-2015-2419)

SOLUTION

AFFECTED SOFTWARE AND VERSION

  • Internet Explorer 6
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11

Featured Stories

Connect with us on