CVE-2011-0346 in Internet Explorerinfo

Zusammenfassung (Englisch)

Use-after-free vulnerability in the ReleaseInterface function in MSHTML.DLL in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the DOM implementation and the BreakAASpecial and BreakCircularMemoryReferences functions, as demonstrated by cross_fuzz, aka "MSHTML Memory Corruption Vulnerability."

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

07.01.2011

Veröffentlichung

07.01.2011

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

IDSchwachstelleCWEAusMasCVE
55988Microsoft Internet Explorer MSHTML.DLL ReleaseInterface Denial of Service399Nicht definiertOffizieller FixCVE-2011-0346

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

ZurückÜbersichtWeiter

Do you know our Splunk app?

Download it now for free!