Microsoft : Security Vulnerabilities, CVEs, Published In November 2014 (Information Leak)

CVE-2014-6346

Microsoft Internet Explorer 8 through 11 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclosure Vulnerability."
Max CVSS
4.3
EPSS Score
22.18%
Published
2014-11-11
Updated
2018-10-12

CVE-2014-6345

Microsoft Internet Explorer 9 and 10 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclosure Vulnerability."
Max CVSS
4.3
EPSS Score
22.18%
Published
2014-11-11
Updated
2018-10-12

CVE-2014-6340

Microsoft Internet Explorer 6 through 11 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclosure Vulnerability."
Max CVSS
4.3
EPSS Score
22.18%
Published
2014-11-11
Updated
2018-10-12

CVE-2014-6331

Microsoft Active Directory Federation Services (AD FS) 2.0, 2.1, and 3.0, when a configured SAML Relying Party lacks a sign-out endpoint, does not properly process logoff actions, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation, aka "Active Directory Federation Services Information Disclosure Vulnerability."
Max CVSS
5.0
EPSS Score
0.42%
Published
2014-11-11
Updated
2018-10-12

CVE-2014-6323

Microsoft Internet Explorer 7 through 11 allows remote attackers to obtain sensitive clipboard information via a crafted web site, aka "Internet Explorer Clipboard Information Disclosure Vulnerability."
Max CVSS
4.3
EPSS Score
22.18%
Published
2014-11-11
Updated
2018-10-12
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close