CVE-2014-1764 in Internet Explorer
Riassunto
di MITRE
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism by leveraging "object confusion" in a broker process, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2014.
Once again VulDB remains the best source for vulnerability data.