Secunia
Login
|
|
CVE Reference: CVE-2009-1530 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2009-1530 |
|
|
Description: Use-after-free vulnerability in Microsoft Internet Explorer 7 for Windows XP SP2 and SP3; 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 allows remote attackers to execute arbitrary code by repeatedly adding HTML document nodes and calling event handlers, which triggers an access of an object that (1) was not properly initialized or (2) is deleted, aka "HTML Objects Memory Corruption Vulnerability." |
|
|
CVE Status: Candidate |
|
|
References: ST 1022350 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6294 OSVDB 54949 MS http://www.microsoft.com/technet/security/Bulletin/MS09-019.mspx MISC http://www.zerodayinitiative.com/advisories/ZDI-09-038 CERT http://www.us-cert.gov/cas/techalerts/TA09-160A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/504209/100/0/threaded |
|
| Return to the previous page. |
