Lucene search
MicrosoftCVE-2012-4787HistoryDec 12, 2012 - 12:55 a.m.
CVE-2012-4787
2012-12-1200:55:01
CWE-399
microsoft
web.nvd.nist.gov
145
cve-2012-4787
use-after-free
microsoft internet explorer
remote code execution
vulnerability
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.4
Confidence
Low
EPSS
0.887
Percentile
98.8%
Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly initialized or (2) is deleted, aka βImproper Ref Counting Use After Free Vulnerability.β
Affected configurations
Node
microsoftinternet_explorerMatch9
microsoftwindows_7x64
ORmicrosoftwindows_7x86
ORmicrosoftwindows_7sp1x64
ORmicrosoftwindows_7sp1x86
ORmicrosoftwindows_server_2008r2x64
ORmicrosoftwindows_server_2008sp2x64
ORmicrosoftwindows_server_2008sp2x86
ORmicrosoftwindows_vistasp2
Node
microsoftinternet_explorerMatch10
microsoftwindows_8Match--x64
ORmicrosoftwindows_8Match--x86
ORmicrosoftwindows_rtMatch-
ORmicrosoftwindows_server_2012Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_explorer | 9 | cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:* |
| microsoft | windows_7 | * | cpe:2.3:o:microsoft:windows_7:*:*:x64:*:*:*:*:* |
| microsoft | windows_7 | * | cpe:2.3:o:microsoft:windows_7:*:*:x86:*:*:*:*:* |
| microsoft | windows_7 | * | cpe:2.3:o:microsoft:windows_7:*:sp1:x64:*:*:*:*:* |
| microsoft | windows_7 | * | cpe:2.3:o:microsoft:windows_7:*:sp1:x86:*:*:*:*:* |
| microsoft | windows_server_2008 | * | cpe:2.3:o:microsoft:windows_server_2008:*:r2:x64:*:*:*:*:* |
| microsoft | windows_server_2008 | * | cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x64:*:*:*:*:* |
| microsoft | windows_server_2008 | * | cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x86:*:*:*:*:* |
| microsoft | windows_vista | * | cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:* |
| microsoft | internet_explorer | 10 | cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:* |
Related
checkpoint_advisories
checkpoint_advisories
prion
prion
Design/Logic Flaw
2012-12-12 00:55:00
nvd
nvd
CVE-2012-4787
2012-12-12 00:55:01
seebug
seebug
cvelist
cvelist
CVE-2012-4787
2012-12-12 00:00:00
mskb
mskb
nessus
nessus
MS12-077: Cumulative Security Update for Internet Explorer (2761465)
2012-12-11 00:00:00
securityvulns
securityvulns
Microsoft Internet Explorer multiple security vulnerabilities
2012-12-13 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (2761465)
2012-12-12 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (2761465)
2012-12-12 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.4
Confidence
Low
EPSS
0.887
Percentile
98.8%
Related for CVE-2012-4787