|MS12-023||Cumulative Security Update for Internet Explorer (2675157)||Internet Explorer||Critical||11-04-2012|
Brief overview of the risk:
This security update resolves five privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the current user.
Detailed Information on the risk:
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object that has been deleted. The vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Further information on this exploit is available at : MS12-023
Affected SoftwareInternet Explorer 6
Internet Explorer 7
Internet Explorer 8
Internet Explorer 9