PT-2014-1131 · Microsoft · Internet Explorer
Amol Naik
·
Publicado
2014-06-10
·
Atualizado
2018-10-12
·
CVE-2014-1774
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Internet Explorer (affected versions not specified)
Description
The issue is related to a use-after-free error when accessing a CGeneratedTreeNode object, allowing remote attackers to execute arbitrary code or cause a denial of service via a specially crafted website. This vulnerability could corrupt memory, enabling an attacker to execute code in the context of the current user.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
RCE
DoS
Code Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Internet Explorer