4 matches found
ZDI-11-196: Microsoft Internet Explorer HTTP 302 Redirect Remote Code Execution Vulnerability
ZDI-11-196: Microsoft Internet Explorer HTTP 302 Redirect Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-196 June 14, 2011 -- CVE ID: CVE-2011-1262 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: Microsoft -- Affected Products: Microsoft...
CVE-2011-1262
CVE-2011-1262 affects Microsoft Internet Explorer 7–9. The flaw arises in how IE handles HTTP 302 redirects to CDL protocols, where a reference counter for a transaction object can be corrupted, causing a use-after-free that enables remote code execution. The vulnerability is described as memory ...
Microsoft Internet Explorer HTTP重定向未初始化内存远程代码执行漏洞
Bugtraq ID: 48211 CVE ID:CVE-2011-1262 Microsoft Internet Explorer是一款微软开发的WEB浏览器。 Internet Explorer处理HTTP 302重定向到CDL协议存在缺陷。当Internet Explorer判断哪个负责处理协议重定向时,未能维护一个正确的用于事务对象的引用计数器,结果可导致释放后使用漏洞,可以以应用程序上下文执行任意代码 Microsoft Internet Explorer 9 Microsoft Internet Explorer 8 Microsoft Internet Explorer 7...
Internet Explorer Redirect CDL Protocol Memory Corruption (MS11-050; CVE-2011-1262)
A remote code execution vulnerability has been reported in Internet Explorer. The vulnerability is due to a memory corruption error in Internet Explorer when handling CDL protocol. Successful exploitation of this vulnerability will crash the browser, and may allow execution of arbitrary code on t...