@berendjanwever What version of iexplore.exe and jscript.dll was the POC for CVE-2015-2482 tested against?
@zebasquared The latest version before the October 2015 patches - I assumed that would be obvious? See https://technet.microsoft.com/en-us/library/security/MS15-108 … for details.
-
-
@berendjanwever the reason I'm asking is because I wasn't able to trigger this with IE 10 or 11 before the most recent patch. Only IE 8 -
@zebasquared Maybe that's because it only affected MSIE 8 ? XP -
@berendjanwever makes sense then. Although CVE-2015-2482 claims that IE 8 to 11 running JScript 5.7 and 5.8 engines are vulnerable. -
@zebasquared That must be wrong - I'd be interested to know of any way to run JavaScript in JScript 5.* in MSIE 11... -
@berendjanwever hahaha this is true. Thank you for your help!
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.