Vulnerability CVE-2015-0016

Vulnerability CVE-2015-0016

Published: 2015-01-13 Modified: 2015-01-14

Description:

	Topic	Author	Date
High	Microsoft Remote Desktop Services Web Proxy IE Sandbox Escape	Juan vazquez	03.02.2015

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
9.3/10	10/10	8.6/10

http://blog.trendmicro.com/trendlabs-security-intelligence/cve-2015-0016-escaping-the-internet-explorer-sandbox/

http://packetstormsecurity.com/files/130201/MS15-004-Microsoft-Remote-Desktop-Services-Web-Proxy-IE-Sandbox-Escape.html

http://secunia.com/advisories/62076

http://www.exploit-db.com/exploits/35983

http://www.securityfocus.com/bid/71965

http://www.securitytracker.com/id/1031524

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-004

https://exchange.xforce.ibmcloud.com/vulnerabilities/99515

https://exchange.xforce.ibmcloud.com/vulnerabilities/99516