CVE-2014-1764
CVE-2014-1764
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism by leveraging "object confusion" in a broker process, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2014.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/34010unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-035http://twitter.com/thezdi/statuses/443855973673754624http://www.pwn2own.com/2014/03/pwn2own-results-for-wednesday-day-one/http://www.securityfocus.com/archive/1/532798/100/0/threadedhttp://www.securityfocus.com/bid/67295http://www.securitytracker.com/id/1030370