CVE-2008-4260

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 7

Description: A remote code execution issue exists due to the way Internet Explorer accesses a deleted object, allowing attackers to execute arbitrary code via a crafted HTML document that triggers memory corruption. This can be exploited by an attacker constructing a specially crafted Web page, which when viewed by a user, could allow remote code execution, potentially giving the attacker the same user rights as the logged-on user.

Recommendations: For Microsoft Internet Explorer version 7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.