Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiAnonymousZDI-09-011
HistoryFeb 10, 2009 - 12:00 a.m.

Microsoft Internet Explorer CFunctionPointer Memory Corruption Vulnerability

2009-02-1000:00:00
Anonymous
www.zerodayinitiative.com
19

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.974 High

EPSS

Percentile

99.9%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the handling of document objects. When an object is appended and deleted in a specific order memory corruption occurs. Successful exploitation leads to remote compromise of the affected system under the credentials of the currently logged in user.

Related

saint 4
seebug 1
cve 2
checkpoint_advisories 3
packetstorm 1
canvas 1
prion 2
securityvulns 3
mskb 1
openvas 2
nessus 1
saint
saint
Internet Explorer deleted object memory corruption
2009-02-23 00:00:00
Internet Explorer deleted object memory corruption
2009-02-23 00:00:00
Internet Explorer deleted object memory corruption
2009-02-23 00:00:00
seebug
seebug
Microsoft IE CFunctionPointerๅ‡ฝๆ•ฐๅ†…ๅญ˜็ ดๅๆผๆดž๏ผˆMS09-002๏ผ‰
2009-02-13 00:00:00
cve
cve
CVE-2009-0075
2009-02-10 22:30:00
CVE-2010-1176
2010-03-29 19:30:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Uninitialized Memory Corruption (CVE-2009-0075)
2020-09-09 00:00:00
Microsoft Internet Explorer Cloned Object Memory Corruption (MS09-002; CVE-2009-0075)
2013-01-14 00:00:00
Microsoft Internet Explorer Uninitialized Memory Corruption (MS09-002; CVE-2009-0075)
2009-02-02 00:00:00
packetstorm
packetstorm
Internet Explorer 7 Uninitialized Memory Corruption Vulnerability
2009-11-26 00:00:00
canvas
canvas
Immunity Canvas: MS09_002
2009-02-10 22:30:00
prion
prion
Memory corruption
2009-02-10 22:30:00
Design/Logic Flaw
2010-03-29 19:30:00
securityvulns
securityvulns
ZDI-09-011: Microsoft Internet Explorer CFunctionPointer Memory Corruption Vulnerability
2009-02-11 00:00:00
Microsoft Internet Explorer multiple security vulnerabilities
2009-02-11 00:00:00
Microsoft Security Bulletin MS09-002 - Critical Cumulative Security Update for Internet Explorer (961260)
2009-02-11 00:00:00
mskb
mskb
MS09-002: Cumulative security update for Internet Explorer
2018-04-17 18:59:42
openvas
openvas
Cumulative Security Update for Internet Explorer (961260)
2009-02-11 00:00:00
Cumulative Security Update for Internet Explorer (961260)
2009-02-11 00:00:00
nessus
nessus
MS09-002: Cumulative Security Update for Internet Explorer (961260)
2009-02-11 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.974 High

EPSS

Percentile

99.9%

JSON
Related for ZDI-09-011
saint4seebug1cve2checkpoint_advisories3packetstorm1canvas1prion2securityvulns3mskb1openvas2nessus1