PT-2014-1056 · Microsoft · Internet Explorer
Royce Lu
+1
·
Publicado
2014-06-10
·
Atualizado
2018-10-12
·
CVE-2014-1804
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Internet Explorer (affected versions not specified)
Description
The issue is related to a use-after-free error when handling a CBlockContainerBlock object, which can lead to memory corruption. This corruption can be exploited by an attacker to execute arbitrary code in the context of the current user or cause a denial of service. The vulnerability can be triggered through a specially crafted website.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
RCE
DoS
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Internet Explorer