Microsoft VBScript and JScript Engines Multiple Vulnerabilities Fixed by MS15-106 and MS15-108
Description
(#Several vulnerabilities have been identified in JScript and VBScript Scripting Engines:#- CVE-2015-2482 and CVE-2015-6055: multiple memory corruption. A remote attacker could exploit them by enticing their victim into visiting a specially formed web page in order to execute arbitrary code with victim's rights. These vulnerabilities stems from an improper handling of objects in memory.##- CVE-2015-6059: information disclosure. A remote attacker could exploit it in order to disclose the contents of memory. This vulnerability stems from an improper handling of objects in memory##- CVE-2015-6052: security bypass located in the Address Space Layout Randomization (ASLR) security feature allowing an attacker to more reliably predict the memory offsets of specific instructions in a given call stack.#Updated, 14/10/2015 :#A proof of concept is available for the CVE-2015-2482 vulnerability.#Updated, 10/11/2015:#Further information is available for the CVE-2015-6055 vulnerability:#- CVE-2015-6055: type confusion within the "Join()" function in VBScript.#Updated, 25/04/2016:#A proof of concept is available for the CVE-2015-6055 vulnerability.)
Vulnerable Products
Vulnerable OS: Windows 2008 (Microsoft) - Itanium-based Server SP2, Server SP2, X64 Edition SP2Windows Vista (Microsoft) - 32 bits SP2, X64 Edition SP2Vulnerable Software: Internet Explorer (Microsoft) - 10, 10, 10, 10, 10, ..., 9.0, 9.0, 9.0, 9.0, 9.0
