Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20373
HistoryMar 18, 2011 - 12:00 a.m.

Microsoft IE多个远程代码执行漏洞

2011-03-1800:00:00
Root
www.seebug.org
12

0.95 High

EPSS

Percentile

99.3%

JSON

BUGTRAQ ID: 46821
CVE ID: CVE-2011-1345,CVE-2011-1346,CVE-2011-1347

Internet Explorer,简称IE,是微软公司推出的一款网页浏览器。Internet Explorer,简称IE或MSIE,是微软公司推出的一款网页浏览器。

IE在实现上存在多个远程代码执行漏洞,远程攻击者可利用此漏洞在应用程序中执行任意代码,造成拒绝服务。

在Pwn2Own 2011竞赛中,Metasploit开发者Fewer用两个IE中的零日bug执行了代码,然后链接到第三个漏洞跳出了IE保护模式沙盒。DEP(数据执行保护)和ASLR(地址空间布局随机化)两个保护机制。

Microsoft Internet Explorer 8.x
厂商补丁:

Microsoft

目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:

http://www.microsoft.com/windows/ie/default.asp

Related

zdi 3
prion 3
cve 3
securityvulns 3
cvelist 3
nvd 3
checkpoint_advisories 1
seebug 1
threatpost 1
openvas 2
nessus 2
zdi
zdi
(Pwn2Own) Microsoft Internet Explorer Protected Mode Bypass Vulnerability
2011-08-09 00:00:00
(Pwn2Own) Microsoft Internet Explorer onPropertyChange Remote Code Execution Vulnerability
2011-04-12 00:00:00
(Pwn2Own) Microsoft Internet Explorer Uninitialized Variable Information Leak Vulnerability
2011-06-14 00:00:00
prion
prion
Design/Logic Flaw
2011-03-10 20:55:00
Memory corruption
2011-03-10 20:55:00
Design/Logic Flaw
2011-03-10 20:55:00
cve
cve
CVE-2011-1347
2011-03-10 20:55:01
CVE-2011-1346
2011-03-10 20:55:01
CVE-2011-1345
2011-03-10 20:55:01
securityvulns
securityvulns
ZDI-11-119: (Pwn2Own) Microsoft Internet Explorer onPropertyChange Remote Code Execution Vulnerability
2011-04-13 00:00:00
VUPEN Security Research - Microsoft Internet Explorer Property Change Memory Corruption (CVE-2011-1345)
2011-04-17 00:00:00
Microsoft Internet Explorer multiple security vulnerabilities
2011-04-17 00:00:00
cvelist
cvelist
CVE-2011-1346
2011-03-10 20:00:00
CVE-2011-1347
2011-03-10 20:00:00
CVE-2011-1345
2011-03-10 20:00:00
nvd
nvd
CVE-2011-1346
2011-03-10 20:55:01
CVE-2011-1347
2011-03-10 20:55:01
CVE-2011-1345
2011-03-10 20:55:01
checkpoint_advisories
checkpoint_advisories
Internet Explorer Object Lifetime Management Memory Corruption (MS11-018; CVE-2011-1345)
2011-04-12 00:00:00
seebug
seebug
Microsoft Internet Explorer 保护模式绕过漏洞(Pwn2Own)
2011-08-10 00:00:00
threatpost
threatpost
April Patch Tuesday Fixes Critical IE, SMB Bugs
2011-04-12 18:26:33
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (2497640)
2011-04-13 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (2497640)
2011-04-13 00:00:00
nessus
nessus
MS11-018: Cumulative Security Update for Internet Explorer (2497640)
2011-04-13 00:00:00
MS11-057: Critical Cumulative Security Update for Internet Explorer (2559049)
2011-08-09 00:00:00

0.95 High

EPSS

Percentile

99.3%

JSON
Related for SSV:20373
zdi3prion3cve3securityvulns3cvelist3nvd3checkpoint_advisories1seebug1threatpost1openvas2nessus2