Microsoft Internet Explorer Improper Ref Counting Use After Free Vulnerability (CVE-2012-4787)

  Severity: CRITICAL
  CVE Identifier: CVE-2012-4787,MS12-077
  Advisory Date: JUL 21, 2015

  DESCRIPTION

Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly initialized or (2) is deleted, aka "Improper Ref Counting Use After Free Vulnerability."

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1005272
  Trend Micro Deep Security DPI Rule Name: 1005272 - Microsoft Internet Explorer Improper Ref Counting Use After Free Vulnerability (CVE-2012-4787)

  AFFECTED SOFTWARE AND VERSION

  • microsoft internet_explorer 10
  • microsoft internet_explorer 9
  • microsoft internet_explorer