2 matches found
VUPEN Security Research - Microsoft Internet Explorer CSS @import Memory Corruption (Pwn2Own 2014)
VUPEN Security Research - Microsoft Internet Explorer CSS @import Memory Corruption Pwn2Own 2014 Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included as part of the...
CVE-2014-1763
CVE-2014-1763 is a use-after-free vulnerability in Microsoft Internet Explorer 9–11 exploited via CSS handling (notably CSS @import) that could allow remote code execution. ZDI-14-217 documents a CSS memory corruption flaw in IE10/IE11/IE9, demonstrated by VUPEN during Pwn2Own 2014, with remote e...