Ming-Chieh Pan

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 9 **Description** The issue is related to insufficient access control in the processor set tasks component of the iOS operating system. It allows a local attacker to bypass existing protection mechanisms and scan ports of random processes. By leveraging root privileges, an attacker can obtain access to the task ports of arbitrary processes. **Recommendations** For Apple iOS versions prior to 9, consider restricting access to the processor set tasks API until a patch is available. As a temporary workaround, limiting the use of root privileges may help minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer version 9 **Description** A use-after-free issue allows remote attackers to execute arbitrary code via a crafted web site. The vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. This issue is related to the way Internet Explorer accesses an object that has not been correctly initialized or has been deleted. **Recommendations** For Microsoft Internet Explorer version 9, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 6 through 9 **Description** A remote code execution issue exists due to improper handling of objects in memory. This allows attackers to execute arbitrary code by accessing a malformed virtual function table after its deletion. The vulnerability may corrupt memory, enabling an attacker to execute arbitrary code in the context of the current user. **Recommendations** For Microsoft Internet Explorer versions 6 through 9, at the moment, there is no information about a newer version that contains a fix for this vulnerability.