CVE-2012-1873 in Internet Explorer
摘要
由 MITRE
Microsoft Internet Explorer 7 through 9 does not properly create and initialize string data, which allows remote attackers to obtain sensitive information from process memory via a crafted HTML document, aka "Null Byte Information Disclosure Vulnerability."
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.