Multiple vulnerabilities in Internet Explorer - MS14-080ID: oval:org.secpod.oval:def:21871 | Date: (C)2014-12-10 (M)2022-11-24 |
Class: PATCH | Family: windows |
The host is missing a critical security update according to Microsoft bulletin, MS14-080. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle a crafted website or crafted content. Successful exploitation could allow attackers to gain the same user rights as the current user, bypass the Address Space Layout Randomization (ASLR) security feature or to cause script code to run on another user's system in the guise of a third-party website.
Platform: |
Microsoft Windows Server 2003 |
Microsoft Windows Vista |
Microsoft Windows Server 2008 |
Microsoft Windows 7 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 8 |
Microsoft Windows Server 2012 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 R2 |
Product: |
Microsoft Internet Explorer 8 |
Microsoft Internet Explorer 9 |
Microsoft Internet Explorer 7 |
Microsoft Internet Explorer 10 |
Microsoft Internet Explorer 11 |
Microsoft Internet Explorer 6 |
VBScript 5.8 |