CVE Number | Vulnerability | Product | Severity | Date |
---|---|---|---|---|
MS12-023 | Cumulative Security Update for Internet Explorer (2675157) | Internet Explorer | Critical | 11-04-2012 |
Technical Information
Brief overview of the risk:
This security update resolves five privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the current user.
Detailed Information on the risk:
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object that has been deleted. The vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Further information on this exploit is available at : MS12-023
Affected Software
Internet Explorer 6Internet Explorer 7
Internet Explorer 8
Internet Explorer 9