CVE-2014-6332
CVE-2014-6332
In short
A flaw in Windows OLE Automation allows attackers to run malicious code on a computer by tricking users into visiting a crafted website. The vulnerability occurs when the system improperly handles array resizing operations, leading to memory corruption.
Technical detail
CVE-2014-6332 is a memory corruption vulnerability in OleAut32.dll's SafeArrayDimen function triggered by specially crafted arrays that exploit improper size validation during array redimensioning. Remote attackers can achieve arbitrary code execution by hosting malicious web content that leverages this flaw when processed through OLE Automation, typically via Internet Explorer or similar COM-based applications.
Summary generated and translated by AI from the official description.
OleAut32.dll in OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted web site, as demonstrated by an array-redimensioning attempt that triggers improper handling of a size value in the SafeArrayDimen function, aka "Windows OLE Automation Array Remote Code Execution Vulnerability."
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 21
githubgithub.com/MarkoArmitage/metasploit-framework★ 5githubgithub.com/tjjh89017/cve-2014-6332★ 2githubgithub.com/mourr/CVE-2014-6332★ 2cve_referencepacketstormsecurity.com/files/134064/Microsoft-Compiled-HTML-Help-Remote-Code-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/134079/Winamp-Bento-Browser-Remote-Code-Execution.htmlunverifiedcve_referencewww.exploit-db.com/exploits/37668/unverifiedcve_referencewww.exploit-db.com/exploits/37800/unverifiedcve_referencewww.exploit-db.com/exploits/38500/unverifiedcve_referencewww.exploit-db.com/exploits/38512/unverifiedexploitdbwww.exploit-db.com/exploits/36516unverifiedexploitdbwww.exploit-db.com/exploits/37400unverifiedexploitdbwww.exploit-db.com/exploits/38500unverifiedexploitdbwww.exploit-db.com/exploits/37668unverifiedexploitdbwww.exploit-db.com/exploits/35229unverifiedexploitdbwww.exploit-db.com/exploits/35230unverifiedexploitdbwww.exploit-db.com/exploits/35308unverifiedexploitdbwww.exploit-db.com/exploits/37800unverifiedcve_referencepacketstormsecurity.com/files/134053/Avant-Browser-Lite-Ultimate-Remote-Code-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/38512unverifiedcve_referencepacketstormsecurity.com/files/134061/The-World-Browser-3.0-Final-Remote-Code-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/134062/HTML-Compiler-Remote-Code-Execution.htmlunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/134053/Avant-Browser-Lite-Ultimate-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/134061/The-World-Browser-3.0-Final-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/134062/HTML-Compiler-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/134064/Microsoft-Compiled-HTML-Help-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/134079/Winamp-Bento-Browser-Remote-Code-Execution.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-064http://securityintelligence.com/ibm-x-force-researcher-finds-significant-vulnerability-in-microsoft-windowshttps://forsec.nl/wp-content/uploads/2014/11/ms14_064_ie_olerce.rb_.txthttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-6332https://www.exploit-db.com/exploits/37668/https://www.exploit-db.com/exploits/37800/https://www.exploit-db.com/exploits/38500/