Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka “Uninitialized Memory Corruption Vulnerability,” a different vulnerability than CVE-2010-2556 and CVE-2011-0036.
osvdb.org/70831
support.avaya.com/css/P8/documents/100127294
www.securityfocus.com/bid/46157
www.securitytracker.com/id?1025038
www.vupen.com/english/advisories/2011/0318
docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-003
exchange.xforce.ibmcloud.com/vulnerabilities/64911
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12371