CVE-2014-0298

Name of the Vulnerable Software and Affected Versions Internet Explorer versions 9 through 11

Description The issue is related to a use-after-free error when handling a CMarkup object, allowing a remote attacker to execute arbitrary code or cause a denial of service due to memory corruption. This occurs because Internet Explorer improperly accesses objects in memory, potentially corrupting it in a way that enables an attacker to execute arbitrary code in the context of the current user.

Recommendations For Internet Explorer versions 9 through 11, update to a version that includes the fix for this issue to prevent remote code execution or denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.