Security Advisory - July 08, 2014

Zscaler Protects against Multiple Memory Corruption Vulnerabilities in Internet Explorer

 

 

Zscaler, working with Microsoft through their MAPPs program, has proactively deployed protections for the following 6 vulnerabilities included in the July 2014 Microsoft security bulletins. Zscaler will continue to monitor exploits associated with all vulnerabilities in the July release and deploy additional protections as necessary.

MS14-037 - Multiple Memory Corruption Vulnerabilities in Internet Explorer

Severity: Critical
Affected Software

  • Internet Explorer 6-11

CVE-2014-1765 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-2787 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-2795 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-2797 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-2801 – Internet Explorer Memory Corruption Vulnerability
CVE-2014-2804 – Internet Explorer Memory Corruption Vulnerability

Description: Remote code execution vulnerabilities exist when Internet Explorer improperly accesses objects in memory. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.