Buffer overflow in Microsoft Ie

CVE-2012-1545

Microsoft Internet Explorer 6 through 9, and 10 Consumer Preview, allows remote attackers to bypass Protected Mode or cause a denial of service (memory corruption) by leveraging access to a Low integrity process, as demonstrated by VUPEN d…

Vulnerability class: Buffer Overflow

EPSS: 0.201 (97.1th percentile) — read the EPSS interpretation.

Affected products

Microsoft Ie — versions 10
Microsoft Internet_explorer — versions 6.0, 6.00.2462.0000, 6.00.2479.0006
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC)