CVE-2014-1785

Microsoft Internet Explorer 11 - Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-1785. PoCs published by Skylined.

AI-analyzed exploit summary This exploit demonstrates a use-after-free vulnerability in Microsoft Internet Explorer 11 by manipulating memory allocation and deallocation via JavaScript. It uses heap spraying techniques to control freed memory and potentially achieve remote code execution.

Description

Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-1769, CVE-2014-1782, CVE-2014-2753, CVE-2014-2755, CVE-2014-2760, CVE-2014-2761, CVE-2014-2772, and CVE-2014-2776.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Skylined · htmldoswindows
https://www.exploit-db.com/exploits/40946

This exploit demonstrates a use-after-free vulnerability in Microsoft Internet Explorer 11 by manipulating memory allocation and deallocation via JavaScript. It uses heap spraying techniques to control freed memory and potentially achieve remote code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Complex
Reliability
Racy
Target: Microsoft Internet Explorer 11
No auth needed
Prerequisites: Target must visit a malicious webpage · JavaScript must be enabled in the target's browser
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
htmldoswindows_x86
https://www.exploit-db.com/exploits/34010

This is a functional proof-of-concept for a use-after-free vulnerability in Internet Explorer 9 and 10, where a freed CFormElement object is accessed, leading to memory corruption. The exploit triggers the vulnerability by manipulating the DOM and forcing a click event on an input element after its parent form is removed.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Internet Explorer 9, 10
No auth needed
Prerequisites: Victim must visit a malicious webpage using Internet Explorer 9 or 10
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (6)

Core 6
Core References
VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1030370
Various Sources x_refsource_misc
http://blog.skylined.nl/20161220001.html
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/40946/
VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/67878

Scores

EPSS 0.5594
EPSS Percentile 98.1%

Details

CWE
CWE-119
Status published
Products (1)
microsoft/internet_explorer 11
Published Jun 11, 2014
Tracked Since Feb 18, 2026