Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2012-1538
HistoryNov 14, 2012 - 12:55 a.m.

CVE-2012-1538

2012-11-1400:55:01
CWE-399
mitre
web.nvd.nist.gov
28
cve-2012-1538
use-after-free
microsoft
internet explorer 9
remote code execution
web vulnerability

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.78

Percentile

98.3%

JSON

Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site, aka β€œCFormElement Use After Free Vulnerability.”

Affected configurations

Nvd
Node
microsoftinternet_explorerMatch9
AND
microsoftwindows_7x64
OR
microsoftwindows_7x86
OR
microsoftwindows_7sp1x64
OR
microsoftwindows_7sp1x86
OR
microsoftwindows_server_2008r2x64
OR
microsoftwindows_server_2008sp2x64
OR
microsoftwindows_server_2008sp2x86
OR
microsoftwindows_vistasp2
VendorProductVersionCPE
microsoftinternet_explorer9cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
microsoftwindows_7*cpe:2.3:o:microsoft:windows_7:*:*:x64:*:*:*:*:*
microsoftwindows_7*cpe:2.3:o:microsoft:windows_7:*:*:x86:*:*:*:*:*
microsoftwindows_7*cpe:2.3:o:microsoft:windows_7:*:sp1:x64:*:*:*:*:*
microsoftwindows_7*cpe:2.3:o:microsoft:windows_7:*:sp1:x86:*:*:*:*:*
microsoftwindows_server_2008*cpe:2.3:o:microsoft:windows_server_2008:*:r2:x64:*:*:*:*:*
microsoftwindows_server_2008*cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x64:*:*:*:*:*
microsoftwindows_server_2008*cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x86:*:*:*:*:*
microsoftwindows_vista*cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*

Related

prion 1
cvelist 1
nvd 1
checkpoint_advisories 1
seebug 1
nessus 1
mskb 1
securityvulns 1
openvas 2
prion
prion
Design/Logic Flaw
2012-11-14 00:55:00
cvelist
cvelist
CVE-2012-1538
2012-11-14 00:00:00
nvd
nvd
CVE-2012-1538
2012-11-14 00:55:01
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer CFormElement Use After Free (MS12-071; CVE-2012-1538)
2012-11-13 00:00:00
seebug
seebug
Microsoft IE CFormElementι‡Šζ”ΎεŽι‡η”¨θΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄žοΌˆMS12-071οΌ‰
2012-11-19 00:00:00
nessus
nessus
MS12-071: Cumulative Security Update for Internet Explorer (2761451)
2012-11-14 00:00:00
mskb
mskb
MS12-071: Cumulative security update for Internet Explorer: November 13, 2012
2012-11-13 00:00:00
securityvulns
securityvulns
Microsoft Internet Explorer multiple security vulnerabilities
2012-11-18 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Use-After-Free Vulnerabilities (2761451)
2012-11-14 00:00:00
Microsoft Internet Explorer Multiple Use-After-Free Vulnerabilities (2761451)
2012-11-14 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.78

Percentile

98.3%

JSON
Related for CVE-2012-1538
prion1cvelist1nvd1checkpoint_advisories1seebug1nessus1mskb1securityvulns1openvas2