Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:DCB95B394157102378C2A8CADFE280E8
HistoryJan 04, 2013 - 12:00 a.m.

Internet Explorer CButton Use After Free Vulnerability

2013-01-0400:00:00
SAINT Corporation
www.saintcorporation.com
43

0.897 High

EPSS

Percentile

98.5%

JSON

Added: 01/04/2013
CVE: CVE-2012-4792
BID: 57070
OSVDB: 88774

Background

Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems.

Problem

All references to DOM button objects are not properly removed when a DOM buttom object is deleted. If the stale references are used, an attempt to access unallocated memory may occur. This results in a use-after-free vulnerability.

Resolution

Apply the appropriate update referenced in Microsoft Security Bulletin MS13-008.

References

<http://blogs.technet.com/b/srd/archive/2012/12/31/microsoft-quot-fix-it-quot-available-for-internet-explorer-6-7-and-8.aspx&gt;
<https://threatpost.com/en_us/blogs/council-foreign-relations-website-hit-watering-hole-attack-ie-zero-day-exploit-122912&gt;
<http://technet.microsoft.com/en-us/security/advisory/2794220&gt;

Limitations

This exploit has been tested against Microsoft Internet Explorer 8 running on Microsoft Windows XP SP3 English (DEP OptIn) and Microsoft Windows 7 SP1 (DEP OptIn).

Platforms

Windows

Related

seebug 1
packetstorm 2
symantec 1
metasploit 1
saint 3
nessus 2
checkpoint_advisories 1
securityvulns 1
threatpost 6
prion 1
zdt 1
openvas 2
cert 1
cve 1
exploitdb 1
thn 4
seebug
seebug
Microsoft Internet Explorer 6/7/8 mshtml!CDwnBindInfo对象释放后重用代码执行漏洞
2012-12-31 00:00:00
packetstorm
packetstorm
Microsoft Internet Explorer CButton Object Use-After-Free
2013-01-02 00:00:00
Microsoft Internet Explorer CDwnBindInfo Object Use-After-Free
2012-12-31 00:00:00
symantec
symantec
Microsoft Internet Explorer 'CDwnBindInfo' Use-After-Free Remote Code Execution Vulnerability
2012-12-30 00:00:00
metasploit
metasploit
MS13-008 Microsoft Internet Explorer CButton Object Use-After-Free Vulnerability
2012-12-31 06:29:19
saint
saint
Internet Explorer CButton Use After Free Vulnerability
2013-01-04 00:00:00
Internet Explorer CButton Use After Free Vulnerability
2013-01-04 00:00:00
Internet Explorer CButton Use After Free Vulnerability
2013-01-04 00:00:00
nessus
nessus
MS KB2794220: Vulnerability in Internet Explorer Could Allow Remote Code Execution (deprecated)
2013-01-02 00:00:00
MS13-008: Security Update for Internet Explorer (2799329)
2013-01-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Internet Explorer Heap Spray Memory Corruption (CVE-2012-4792)
2012-12-30 00:00:00
securityvulns
securityvulns
Microsoft Internet Explorer use-after-free vulnerabilities
2013-01-16 00:00:00
threatpost
threatpost
Watering Hole Attack Hits US Department of Labor Website
2013-05-01 16:30:58
Out-of-Band IE Patch Released as More Sites Attacked
2013-01-14 20:29:58
IE 8 Zero Day Widens Scope of DoL Watering Hole Attack
2013-05-06 11:14:47
prion
prion
Design/Logic Flaw
2012-12-30 18:55:00
zdt
zdt
Microsoft Internet Explorer CDwnBindInfo Object Use-After-Free
2012-12-31 00:00:00
openvas
openvas
Microsoft Internet Explorer Remote Code Execution Vulnerability (2794220)
2013-01-02 00:00:00
Microsoft Internet Explorer Remote Code Execution Vulnerability (2794220)
2013-01-02 00:00:00
cert
cert
Microsoft Internet Explorer CButton use-after-free vulnerability
2012-12-29 00:00:00
cve
cve
CVE-2012-4792
2012-12-30 18:55:00
exploitdb
exploitdb
Microsoft Internet Explorer - CButton Object Use-After-Free (Metasploit)
2013-01-02 00:00:00
thn
thn
CFR watering hole attack also target Capstone Turbine Corporation
2013-01-02 01:23:00
CFR watering hole attack also target Capstone Turbine Corporation
2013-01-02 12:23:00
ASLR bypass techniques are popular with APT attacks
2013-10-16 04:42:00

0.897 High

EPSS

Percentile

98.5%

JSON
Related for SAINT:DCB95B394157102378C2A8CADFE280E8
seebug1packetstorm2symantec1metasploit1saint3nessus2checkpoint_advisories1securityvulns1threatpost6prion1zdt1openvas2cert1cve1exploitdb1thn4