CVE-2014-4109

Microsoft Internet Explorer 6-11 - Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-4109. PoCs published by day6reak.

AI-analyzed exploit summary This is a detailed writeup describing a use-after-free vulnerability in Internet Explorer (CVE-2014-4109). The analysis includes crash logs, stack traces, and debugging commands to reproduce the issue, which involves a script element being freed and later accessed.

Description

Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-2799, CVE-2014-4059, CVE-2014-4065, CVE-2014-4079, CVE-2014-4081, CVE-2014-4083, CVE-2014-4085, CVE-2014-4088, CVE-2014-4090, CVE-2014-4094, CVE-2014-4097, CVE-2014-4100, CVE-2014-4103, CVE-2014-4104, CVE-2014-4105, CVE-2014-4106, CVE-2014-4107, CVE-2014-4108, CVE-2014-4110, and CVE-2014-4111.

Exploits (1)

nomisec WRITEUP
by day6reak · poc
https://github.com/day6reak/CVE-2014-4109

This is a detailed writeup describing a use-after-free vulnerability in Internet Explorer (CVE-2014-4109). The analysis includes crash logs, stack traces, and debugging commands to reproduce the issue, which involves a script element being freed and later accessed.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Complex
Reliability
Racy
Target: Microsoft Internet Explorer (versions affected by CVE-2014-4109)
No auth needed
Prerequisites: Target must be using a vulnerable version of Internet Explorer · Attacker must convince the user to visit a malicious URL
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1030818
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/69619

Scores

EPSS 0.3125
EPSS Percentile 98.1%

Details

CWE
CWE-119
Status published
Products (6)
microsoft/internet_explorer 6
microsoft/internet_explorer 7
microsoft/internet_explorer 8
microsoft/internet_explorer 9
microsoft/internet_explorer 10
microsoft/internet_explorer 11
Published Sep 10, 2014
Tracked Since Feb 18, 2026