Security Advisory - September 09, 2014

Zscaler Protects against Multiple Memory Corruption Vulnerabilities in Internet Explorer

 

 

Zscaler, working with Microsoft through their MAPPs program, has proactively deployed protections for the following 11 vulnerabilities included in the September 2014 Microsoft security bulletins.  Zscaler will continue to monitor exploits associated with all vulnerabilities in the September release and deploy additional protections as necessary.

MS14-052 - Multiple Memory Corruption Vulnerabilities in Internet Explorer

Severity: Critical
Affected Software

  • Internet Explorer 6-11

CVE-2014-2799 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4065 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4080 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4081 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4084 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4087 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4088 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4089 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4092 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4094 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-4095 – Internet Explorer Memory Corruption Vulnerability

Description: Remote code execution vulnerabilities exist when Internet Explorer improperly accesses objects in memory. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.