Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Internet Explorer use-after-free vulnerabilities
Published:16.01.2013
Source:
SecurityVulns ID:12835
Type:client
Threat Level:
8/10
Description:Use-after-free vulnerability in CButton is actively used in-the-wild.
Affected:MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows Vista
 MICROSOFT : Windows 2008 Server
 MICROSOFT : Windows 7
CVE:CVE-2012-4792 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object, and exploited in the wild in December 2012.)
Files:Microsoft Security Bulletin MS13-008 - Critical Security Update for Internet Explorer (2799329)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod