Microsoft Internet Explorer Use-After-Free Vulnerability

Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object. The impacted product could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product...

SUSE CVE-2009-2467

Mozilla Firefox before 3.0.12 and 3.5 before 3.5.1 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors involving a Flash object, a slow script dialog, and the unloading of the Flash plugin, which triggers attempted use of a deleted...

AZL-36987 CVE-2018-14628 affecting package samba 4.18.3-2

An information leak vulnerability was discovered in Samba's LDAP server. Due to missing access control checks, an authenticated but unprivileged attacker could discover the names and preserved attributes of deleted objects in the LDAP store...

Samba 安全漏洞

Samba is a standard Windows interoperability program suite for Linux and Unix. Samba has a security vulnerability that stems from a lack of access control checks. An attacker could exploit the vulnerability to obtain the names and retained attributes of deleted objects in the LDAP store...

Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2017-11903)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this vulnerability by enticing a target victim to open a specially crafte...

Microsoft Windows Win32k Elevation of Privilege (MS16-062: CVE-2016-0174)

A use after free vulnerability exists in Microsoft Windows that could be abused by attackers to elevate privileges. The vulnerability is caused when a font object is referenced after being deleted. A remote attacker can exploit this vulnerability by running a specially crafted application...

Microsoft Internet Explorer Memory Corruption (MS16-037: CVE-2016-0159)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...

Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0114)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...

Microsoft Office Memory Corruption (MS15-081: CVE-2015-2469)

A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to an error in handling of an uninitialized or deleted object. A remote attacker can exploit this issue by enticing a victim to open a specially crafted office file...

VulnCheck KEV: CVE-2013-2551

Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute remote code via a crafted web site that triggers access to a deleted object...

CVE-2013-1312

Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability."...

CVE-2013-1310

Use-after-free vulnerability in Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability."...

CVE-2013-1311

Use-after-free vulnerability in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability."...

CVE-2013-1309

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability," a different vulnerability than CVE-2013-1308 and...

CVE-2013-1307

Use-after-free vulnerability in Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability," a different vulnerability than CVE-2013-0811...

Design/Logic Flaw

Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability."...

Design/Logic Flaw

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability," a different vulnerability than CVE-2013-1309 and...

Design/Logic Flaw

Use-after-free vulnerability in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability."...

CVE-2013-1312

CVE-2013-1312 affects Microsoft Internet Explorer 9 and 10. The vulnerability is a use-after-free in mshtml/CDOMTextNode where an in-memory object that has been deleted is accessed via a crafted web page, leading to remote code execution. Exploitation requires the user to visit a malicious page o...

CVE-2013-1309

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability," a different vulnerability than CVE-2013-1308 and...