CVE-2014-6341

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 11

Description The issue allows remote attackers to execute arbitrary code or cause a denial of service due to memory corruption via a crafted web site. This occurs because Internet Explorer improperly accesses objects in memory, potentially corrupting it in a way that enables an attacker to execute arbitrary code in the context of the current user. If the current user has administrative rights, an attacker could gain complete control of the affected system, allowing them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Internet Explorer versions 6 through 11, update to a version that is not affected by this issue to prevent exploitation. As a temporary workaround, consider restricting access to potentially vulnerable web sites or disabling JavaScript in Internet Explorer until a patch is available.