What is CVE-2011-1255?

CVE-2011-1255 is a vulnerability in Microsoft Internet_explorer, classified under Use of Uninitialized Resource. Published 2011-06-16.

Is CVE-2011-1255 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Microsoft Internet_explorer

CVE-2011-1255

The Timed Interactive Multimedia Extensions (aka HTML+TIME) implementation in Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an objec…

EPSS: 0.524 (98.0th percentile) — read the EPSS interpretation.

Affected products

Microsoft Internet_explorer — versions 6, 7, 8
Microsoft Windows_7
Microsoft Windows_server_2003
Microsoft Windows_server_2008 — versions r2
Microsoft Windows_vista
Microsoft Windows_xp
N/a — versions n/a

Weakness classification (CWE)

CWE-908 — Use of Uninitialized Resource

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

72947 (x_refsource_OSVDB, vdb-entry, Broken Link)
secure@microsoft.com (x_refsource_CONFIRM, Broken Link, Vendor Advisory)
MS11-050 (x_refsource_MS, vendor-advisory, Patch, Vendor Advisory)
oval:org.mitre.oval:def:12227 (Tool Signature, x_refsource_OVAL, signature, vdb-entry)

Frequently asked questions

What is CVE-2011-1255?: CVE-2011-1255 is a vulnerability in Microsoft Internet_explorer, classified under Use of Uninitialized Resource. Published 2011-06-16.
Is CVE-2011-1255 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.