CVE-2012-0011

CVE-2012-0011 relates to Microsoft Internet Explorer 7–9 via MSHTML: a use-after-free in handling of HTML time (t:MEDIA) elements leads to a freed CDispNode reference, enabling remote code execution. ZDI notes IE9 involvement; MS12-010 (2647516) is the official patch. Exploitation context require...

VulnCheck KEV: CVE-2011-1345

Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that 1 was not properly initialized or 2 is deleted, as demonstrated by Stephen Fewer as the first of three chained...

PT-2010-2064 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 through 7 Description: A remote code execution issue exists due to improper handling of objects in memory. This allows attackers to execute arbitrary code by accessing an object that was not properly...

PT-2009-4029 · Microsoft · Windows Xp +5

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer 8 for Windows XP SP2 and SP3 Microsoft Internet Explorer 8 for Server 2003 SP2 Microsoft Internet Explorer 8 for Vista Gold, SP1, and SP2 Microsoft Internet Explorer 8 for Server 2008 SP2 Description: A remote code...

Microsoft Publisher Memory Object Handler Data Remote Code Execution Vulnerability

Description Microsoft Publisher is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious Publisher file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently...