2 matches found
CVE-2013-0020
CVE-2013-0020 is a concrete use-after-free vulnerability in Microsoft Internet Explorer 9, related to CMarkup handling (CDATAs) that can be triggered by visiting a crafted page. The root cause involves a dangling pointer being reused after a delete, enabling remote code execution with the user’s ...
Internet Explorer CMarkup Use After Free (MS13-009; CVE-2013-0020)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...