CVE-2009-2529

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 5.01 SP4, 6, 6 SP1, 7, and 8

Description The issue arises from improper argument validation for unspecified variables, allowing remote attackers to execute arbitrary code via a crafted HTML document. This is related to the handling of HTML components.

Recommendations For Microsoft Internet Explorer versions 5.01 SP4, 6, 6 SP1, 7, and 8, consider disabling the handling of HTML components as a temporary workaround until a patch is available. Restrict access to crafted HTML documents to minimize the risk of exploitation. Avoid using unspecified variables in HTML documents until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.