Vulnerability in Microsoft Internet_explorer

CVE-2015-0032

vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 8 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site…

EPSS: 0.189 (95.4th percentile) — read the EPSS interpretation.

Affected products

Microsoft Internet_explorer — versions 8, 9, 10
Microsoft Vbscript — versions 5.6, 5.7, 5.8
N/a — versions n/a

Weakness classification (CWE)

CWE-399

References

72910 (vdb-entry, x_refsource_BID)
MS15-018 (x_refsource_MS, vendor-advisory)
1031888 (vdb-entry, x_refsource_SECTRACK)
MS15-019 (x_refsource_MS, vendor-advisory)
1031887 (vdb-entry, x_refsource_SECTRACK)