9.3
CVE-2012-2523
- EPSS 22.18%
- Veröffentlicht 15.08.2012 01:55:01
- Zuletzt bearbeitet 16.06.2026 23:41:38
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Integer overflow in Microsoft Internet Explorer 8 and 9, JScript 5.8, and VBScript 5.8 on 64-bit platforms allows remote attackers to execute arbitrary code by leveraging an incorrect size calculation during object copying, aka "JavaScript Integer Overflow Remote Code Execution Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version8
Microsoft ≫ Internet Explorer Version9
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 22.18% | 0.974 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://www.us-cert.gov/cas/techalerts/TA12-227A.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-052
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-056
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15790