[SingCERT] Microsoft Internet Explorer Allow Remote Code Execution

Main Menu

Mailing List

[SingCERT] Microsoft Internet Explorer Allow Remote Code Execution

Last Updated on Wednesday, 10 March 2010 15:30

Attention: open in a new window.

[ Summary ]

Microsoft Internet Explorer is prone to a remote code-execution vulnerability.

The issue occurs because an invalid pointer may attempt to access an object after it has been deleted. Internet Explorer 8 is not affected by this vulnerability

[ Affected System ]

Internet Explorer 6
Internet Explorer 6 Service Pack 1
Internet Explorer 7

[ Impact Analysis ]
Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks may cause denial-of-service conditions.

[ Solution/Workaround ]

No patches was available at the time of this entry. Please see referenced advisory for the mitigating factors related to this vulnerability.

[ Reference ]

http://www.microsoft.com/technet/security/advisory/981374.mspx

< Prev		Next >

Search, View and Navigation

Main Menu

Mailing List

Archive

[SingCERT] Microsoft Internet Explorer Allow Remote Code Execution

Additional Information

Symantec Security Alerts