Microsoft IE JavaScript跨域信息泄露漏洞(MS11-018)

BUGTRAQ ID: 47192 CVE ID: CVE-2011-1245 Windows Internet Explorer，原称Microsoft Internet Explorer，简称MSIE（一般称为Internet Explorer，简称IE），是微软公司推出的一款网页浏览器。 Microsoft Internet Explorer JavaScript在实现上存在跨域信息泄露漏洞，远程攻击者可利用此漏洞访问其他域或安全区域内的内容，获取敏感信息。...

Internet Explorer JavaScript Opener Object Information Disclosure (MS11-018; CVE-2011-1245)

An information disclosure vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which may allow the attacker to view data from a Web page in another Internet...

Internet Explorer Object Lifetime Management Memory Corruption (MS11-018; CVE-2011-1345)

A remote code execution vulnerability has been reported in Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. The...

Internet Explorer Layouts Handling Memory Corruption (MS11-018; CVE-2011-0094)

A remote code execution vulnerability has been reported in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. The vulnerability is due to a memory corruption error in Internet Explorer when handling layouts. To trigger this issue, an...