4 matches found
Memory corruption
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that 1 was not properly initialized or 2 is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability," a...
Microsoft IE CAttrArray对象远程代码执行漏洞(MS09-072)
BUGTRAQ ID: 37213 CVE ID: CVE-2009-3674 Internet Explorer是Windows操作系统中默认捆绑的WEB浏览器。 Internet Explorer在解除分配对CAttrArray对象的循环引用期间存在内存破坏漏洞。如果在关闭网页之前释放了CAttrArray对象,IE在解除分配循环指针期间会访问已释放的内存,这可能导致以当前登录用户的权限执行任意指令。 Microsoft Internet Explorer 8.0 临时解决方法: 将Internet...
CVE-2009-3674
CVE-2009-3674 affects Microsoft Internet Explorer 8, describing an Uninitialized Memory Corruption vulnerability in how IE8 handles memory objects (uninitialized or deleted) that can enable remote code execution. Multiple records in the connected data corroborate the same memory-corruption vector...
Internet Explorer 8 Circular References Memory Corruption (MS09-072; CVE-2009-3674)
Microsoft Internet Explorer is the most widely used Internet browser. A memory corruption vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to the way Internet Explorer accesses an object that has not been correctly initialized or has been deleted. To trigge...