Microsoft Internet Explorer Uninitialized Memory Corruption Remote Code Execution Vulnerability
Schweregrad:: Kritisch
CVE Kennungen:: CVE-2008-3475,MS08-058
Hinweisdatum: 21 Juli 2015
Beschreibung
Microsoft Internet Explorer 6 does not properly handle errors related to using the componentFromPoint method on xml objects that have been (1) incorrectly initialized or (2) deleted, which allows remote attackers to execute arbitrary code via a crafted HTML document, aka "Uninitialized Memory Corruption Vulnerability."
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1002933
Trend Micro Deep Security DPI Rule Name: 1002933 - Microsoft Internet Explorer Uninitialized Memory Corruption Remote Code Execution
Betroffene Software und Version:
- microsoft internet_explorer 5.01
- microsoft internet_explorer 6
- microsoft internet_explorer 7