New Search

Property Memory Corruption Vulnerability

oval:org.mitre.oval:def:5396

Use-after-free vulnerability in Microsoft Internet Explorer 6 SP1 6 SP2 and and 7 allows remote attackers to execute arbitrary code by assigning malformed values to certain properties as demonstrated using the by property of an animateMotion SVG element aka "Property Memory Corruption Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Vista
  • Microsoft Windows 2000
  • Microsoft Windows Server 2003
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2008-0077
Product(s):
  • Microsoft Internet Explorer