Описание
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly allocated or (2) is deleted, as exploited in the wild in May 2013.
Ссылки
- MitigationPatchVendor Advisory
- ExploitThird Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- PatchVendor Advisory
- Broken Link
- MitigationPatchVendor Advisory
- ExploitThird Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- PatchVendor Advisory
- Broken Link
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.86916
Высокий
8.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-416
CWE-416
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly allocated or (2) is deleted, as exploited in the wild in May 2013.
CVSS3: 9.6
fstec
почти 13 лет назад
Уязвимость браузера Internet Explorer, связанная с использованием памяти после её освобождения, позволяющая нарушителю выполнить произвольный код
EPSS
Процентиль: 99%
0.86916
Высокий
8.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-416
CWE-416