Vulnerability Name:

CVE-2015-0072 (CCN-100606)

Assigned:2014-11-18
Published:2015-02-02
Updated:2018-10-12
Summary:Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy and inject arbitrary web script or HTML via vectors involving an IFRAME element that triggers a redirect, a second IFRAME element that does not trigger a redirect, and an eval of a WindowProxy object, aka "Universal XSS (UXSS)."
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.4 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.4 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-79
Vulnerability Consequences:Cross-Site Scripting
References:Source: MISC
Type: UNKNOWN
http://community.websense.com/blogs/securitylabs/archive/2015/02/05/another-day-another-zero-day-internet-explorer-s-turn-cve-2015-0072.aspx

Source: MITRE
Type: CNA
CVE-2015-0072

Source: MISC
Type: Exploit
http://innerht.ml/blog/ie-uxss.html

Source: MISC
Type: Exploit
http://packetstormsecurity.com/files/130308/Microsoft-Internet-Explorer-Universal-XSS-Proof-Of-Concept.html

Source: FULLDISC
Type: UNKNOWN
20150131 Major Internet Explorer Vulnerability - NOT Patched

Source: SECUNIA
Type: UNKNOWN
62658

Source: CCN
Type: Microsoft Security Bulletin MS15-018
Cumulative Security Update for Internet Explorer (3032359)

Source: CCN
Type: Microsoft Web site
Internet Explorer

Source: MISC
Type: UNKNOWN
http://www.pcworld.com/article/2879372/dangerous-ie-vulnerability-opens-door-to-powerful-phishing-attacks.html

Source: BUGTRAQ
Type: UNKNOWN
20150209 Cookie hijacking: Internet Explorer UXSS (CVE-2015-0072)

Source: BID
Type: UNKNOWN
72489

Source: CCN
Type: BID-72489
Microsoft Internet Explorer Same Origin Policy Security Bypass Vulnerability

Source: SECTRACK
Type: UNKNOWN
1031888

Source: MS
Type: UNKNOWN
MS15-018

Source: XF
Type: UNKNOWN
ms-ie-cve20150072-xss(100606)

Source: XF
Type: UNKNOWN
ms-ie-cve20150072-xss(100606)

Source: MISC
Type: UNKNOWN
https://nakedsecurity.sophos.com/2015/02/04/internet-explorer-has-a-cross-site-scripting-zero-day-bug/

Source: CCN
Type: Packet Storm Security [02-02-2015]
Internet Explorer 11 Same Origin Bypass

Source: CCN
Type: Packet Storm Security [02-09-2015]
Microsoft Internet Explorer Universal XSS Proof Of Concept

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:11:-:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:10:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:11:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:28737
    V
    		Internet Explorer elevation of privilege vulnerability - CVE-2015-0072 (MS15-018)
    2015-04-27
    BACK
    microsoft internet explorer 9
    microsoft internet explorer 10
    microsoft internet explorer 11 -
    microsoft ie 9
    microsoft ie 10
    microsoft ie 11