Description
Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process memory via crafted parameters in an ArrayBuffer.slice call, aka "Internet Explorer Information Disclosure Vulnerability."
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1033800
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-106
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-518
Scores
EPSS
0.1894
EPSS Percentile
97.0%
Details
CWE
CWE-200
Status
published
Products (1)
microsoft/internet_explorer
11
Published
Oct 14, 2015
Tracked Since
Feb 18, 2026