CVE-2013-0030

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 10

Description A remote code execution issue exists due to improper buffer allocation in the Vector Markup Language (VML) implementation, allowing attackers to execute arbitrary code via a crafted web site. The vulnerability occurs in the way Internet Explorer handles objects in memory, which can be exploited by constructing a specially crafted webpage, potentially leading to remote code execution with the same user rights as the current user.

Recommendations For Microsoft Internet Explorer versions 6 through 10, update to a version that includes the fix for this issue to prevent remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.