CVE-2014-1764

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 7 through 11

Description The issue allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism by leveraging object confusion in a broker process. It is also related to a use-after-free error, which enables an attacker to execute arbitrary code using a specially crafted website. Additionally, there is an elevation of privilege vulnerability that could be used in conjunction with another vulnerability to run arbitrary code with elevated privileges.

Recommendations For Microsoft Internet Explorer versions 7 through 11, at the moment, there is no information about a newer version that contains a fix for this vulnerability.