3 matches found
Microsoft IE 脚本错误处理内存破坏漏洞(MS07-057)
BUGTRAQ ID: 25916 CVECAN ID: CVE-2007-3893 Internet Explorer是微软的操作系统中所捆绑的WEB浏览器。 IE在处理文件下载队列时存在漏洞,恶意网站可能利用此漏洞控制用户系统。 在处理文件下载队列时,如果Internet Explorer处理了多个并行的启动文件下载尝试,就可能导致内存破坏,使用已经释放的对象。攻击者可以通过构建特制的网页来利用该漏洞。如果用户查看网页,该漏洞可能允许远程执行指令。 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 6.0 SP1...
CVE-2007-3893
CVE-2007-3893 involves a remote code execution vulnerability in Internet Explorer 5.01–7 caused by memory corruption from an unhandled error during certain operations. Exploitation requires a user to view a crafted Web page, with remote attackers potentially gaining the same privileges as the log...
MS07-057: Cumulative Security Update for Internet Explorer (939653)
The remote host is missing the IE cumulative security update 939653. The remote version of IE is vulnerable to several flaws that could allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid26963;...