← Back

CVE-2014-6363

nvd nist
Published: Dec 11, 2014Modified: May 6, 2026

JSON object

Loading...
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD

Description

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 6 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability."

Affected (9)

Microsoft
2 products
Vbscript
Internet Explorer
Configuration A
9 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Vbscript
Version 5.6
Vbscript
Version 5.7
Vbscript
Version 5.8
Microsoft
Internet Explorer
Version 10
Internet Explorer
Version 11
Internet Explorer
Version 6
Internet Explorer
Version 7
Internet Explorer
Version 8
Internet Explorer
Version 9

Related CWEs

CWE-399
CWE-399

References (8)

Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.