5 matches found
Internet Explorer Selection Object Memory Corruption (MS11-050) - Ver2 (CVE-2011-1261)
This is a remote code execution vulnerability. When Internet Explorer attempts to access an object that has not been initialized or has been deleted, it may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the logged-on user. Successful exploitation of...
ZDI-11-195: Microsoft Internet Explorer selection.empty Remote Code Execution Vulnerability
ZDI-11-195: Microsoft Internet Explorer selection.empty Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-195 June 14, 2011 -- CVE ID: CVE-2011-1261 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: Microsoft -- Affected Products: Microsoft Interne...
CVE-2011-1261
CVE-2011-1261 affects Microsoft Internet Explorer (IE) versions 6–9. The flaw is in how IE handles objects in memory, specifically when an object that was not properly initialized or that has been deleted is accessed, causing memory corruption. This Memory Corruption Vulnerability (Selection Obje...
Microsoft Internet Explorer Selection未初始化内存远程代码执行漏洞
Bugtraq ID: 48210 CVE ID:CVE-2011-1261 Microsoft Internet Explorer是一款微软开发的WEB浏览器。 在部分点击事件过程中Internet explorer处理javascript语句'selection.empty'存在缺陷。通过触发特定序列的事件,攻击者可释放一个还在使用的CDisplayObject对象。对之前释放内存的操作可导致任意代码执行。 Microsoft Internet Explorer 9 Microsoft Internet Explorer 8 Microsoft Internet Explorer 7...
Internet Explorer Selection Object Memory Corruption (MS11-050; CVE-2011-1261)
This is a remote code execution vulnerability. When Internet Explorer attempts to access an object that has not been initialized or has been deleted, it may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the logged-on user. Successful exploitation of...