The broker EditWith feature in Microsoft Internet Explorer 8 through 11 allows remote attackers to bypass the AppContainer protection mechanism and gain privileges via a DelegateExecute launch of an arbitrary application, as demonstrated by a transition from Low Integrity to Medium Integrity, aka “Internet Explorer Elevation of Privilege Vulnerability.”
CPE | Name | Operator | Version |
---|---|---|---|
internet_explorer | eq | 10 | |
internet_explorer | eq | 8 | |
internet_explorer | eq | 11 | |
internet_explorer | eq | 9 |