CVE-2014-6339

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 8 through 9

Description A security feature bypass issue exists due to Internet Explorer not utilizing the Address Space Layout Randomization (ASLR) security feature. This could allow an attacker to more reliably predict memory offsets, potentially bypassing the ASLR security feature. The bypass by itself does not enable arbitrary code execution but could be used in conjunction with another vulnerability, such as a remote code execution vulnerability, to run arbitrary code.

Recommendations For Microsoft Internet Explorer versions 8 and 9, at the moment, there is no information about a newer version that contains a fix for this vulnerability.