Rosario Valotta

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 6 through 10 **Description** The issue allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object. This occurs because of a use-after-free vulnerability in the way Internet Explorer accesses an object in memory that has been deleted, potentially corrupting memory to allow an attacker to execute arbitrary code in the context of the current user. **Recommendations** For Microsoft Internet Explorer versions 6 through 10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 9 through 10 **Description** A use-after-free issue allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. **Recommendations** For Microsoft Internet Explorer versions 9 and 10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer version 9 **Description** A use-after-free issue allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. **Recommendations** For Microsoft Internet Explorer version 9, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 8 and earlier, and Internet Explorer 9 beta **Description** The issue allows user-assisted remote attackers to read cookie files via vectors involving an IFRAME element with a SRC attribute containing a file: URL, related to a "cookiejacking" issue. This can be demonstrated by a Facebook game. **Recommendations** For Microsoft Internet Explorer versions 8 and earlier, and Internet Explorer 9 beta, consider restricting the use of IFRAME elements with file: URLs as a temporary workaround until a patch is available. Avoid using the SRC attribute with file: URLs in IFRAME elements to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 9 and earlier **Description** The issue allows user-assisted remote attackers to read cookie files via vectors involving an IFRAME element with a SRC attribute containing an http: URL that redirects to a file: URL. This is related to a "cookiejacking" issue. An attacker could exploit the vulnerability by constructing a specially crafted Web page that could allow information disclosure if a user viewed the Web page and performed a drag-and-drop operation, potentially gaining access to cookie files stored in the local machine. **Recommendations** For Microsoft Internet Explorer versions 9 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.