CVE-2015-0040

Microsoft Internet Explorer 11 - Remote Code Execution or Denial of Service via Memory Corruption

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-0040. PoCs published by Skylined.

AI-analyzed exploit summary This PoC exploits a reentrancy issue in MSIE 11's handling of readystatechange events, leading to a use-after-free vulnerability via CMapElement object manipulation. The exploit triggers memory corruption by interrupting DOM notifications during applet element insertion.

Description

Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-0018, CVE-2015-0037, and CVE-2015-0066.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Skylined · doswindows

https://www.exploit-db.com/exploits/40757

View Code ZIP pw:eip

This PoC exploits a reentrancy issue in MSIE 11's handling of readystatechange events, leading to a use-after-free vulnerability via CMapElement object manipulation. The exploit triggers memory corruption by interrupting DOM notifications during applet element insertion.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Racy

Target: Microsoft Internet Explorer 11

No auth needed

Prerequisites: Target must visit a malicious webpage · JavaScript must be enabled

MITRE ATT&CK