New Search

HTML Objects Memory Corruption Vulnerability

oval:org.mitre.oval:def:6025

Microsoft Internet Explorer 5.01 6 and 7 accesses uninitialized memory in certain conditions which allows remote attackers to cause a denial of service (crash) and execute arbitrary code via vectors related to a document object "appended in a specific order" with "particular functions ... performed on" document objects aka "HTML Objects Memory Corruption Vulnerability" or "Table Layout Memory Corruption Vulnerability" a different vulnerability than CVE-2008-2257.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
  • Microsoft Windows Server 2008
  • Microsoft Windows XP
  • Microsoft Windows Vista
  • Microsoft Windows Server 2003
Class:
vulnerability
Reference(s):
  • CVE-2008-2258
Product(s):
  • Microsoft Internet Explorer