ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Riskminder js CVE-2014-0312
Article ID: 76796
Updated On:
Products
CA Rapid App Security
CA Advanced Authentication
Issue/Introduction
My customer's IPS is stating an security issue on the riskminder-client.js file.
the IPS warning stating: "HTTP: Microsoft Internet Explorer Onproperychnage use after free vulnerability (CVE-2014-0312)"
We need a quick response about this CVE and if a mitigation is required.
the IPS warning stating: "HTTP: Microsoft Internet Explorer Onproperychnage use after free vulnerability (CVE-2014-0312)"
We need a quick response about this CVE and if a mitigation is required.
Environment
Riskminder 3.1
Resolution
The vulnerabilities mentioned here do not look like an issue with the client but are specific to Microsoft Internet Explorer. Microsoft has mentioned that whoever is facing this vulnerability has to install the update mentioned in the link below.
https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2014/ms14-012
The updates have been mentioned for each particular vulnerability and both CVE-2014-0312 and CVE-2014-0324 are mentioned there.
https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2014/ms14-012
The updates have been mentioned for each particular vulnerability and both CVE-2014-0312 and CVE-2014-0324 are mentioned there.
Feedback
Yes
No
Powered by
