ZDI-11-290 : Microsoft Internet Explorer SetExpandedClipRect Remote,Code Execution Vulnerability

ZDI-11-290 : Microsoft Internet Explorer SetExpandedClipRect Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-290 October 15, 2011 - -- CVE ID: CVE-2011-2001 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors: Microsoft - -- Affected Products:...

CVE-2011-2001

Microsoft Internet Explorer 6–9 were vulnerable to a remote code execution via memory corruption in the handling of objects, specifically a logic error in SetExpandedClipRect that could corrupt a vftable pointer in mshtml.dll. Exploitation requires a user to view a malicious page, enabling code e...

Microsoft IE虚拟函数表格内存破坏漏洞(MS11-081)

BUGTRAQ ID: 49966 CVE ID: CVE-2011-2001 Microsoft Internet Explorer简称MSIE，是微软公司推出的一款网页浏览器。 IE在处理虚拟函数表格时在实现上存在内存破坏漏洞，远程攻击者可利用此漏洞远程代码，导致拒绝服务或执行任意指令。 攻击者可以保存使用IE利用漏洞的特制网站，然后诱使用户查看该网站。也可在应用或保存了IE渲染引擎的Office文档中嵌入ActiveX控件。然后利用受控站点存储或接受用户内容或广告，诱使用户点击电子邮件或即时消息的链接转到攻击者网站。 Microsoft Internet Explorer 9.x...

Microsoft Internet Explorer Multiple Vulnerabilities (2586448)

This host is missing a critical security update according to Microsoft Bulletin MS11-081. OpenVAS Vulnerability Test $Id: secpodms11-081.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft Internet Explorer Multiple Vulnerabilities 2586448 Authors: Veerendra G.G Copyright: Copyright c 2011 SecPod...

Internet Explorer Virtual Function Table Memory Corruption (MS11-081; CVE-2011-2001)

A memory corruption vulnerability has been reported in Internet Explorer. The vulnerability is due to an error when handling a certain DOM operation. A remote attacker may exploit this vulnerability by enticing a user to open a malicious web-page. Successful exploitation may cause a memory...