[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

MS11-003 - Cascading Style Sheets (CSS) memory corruption vulnerability in Microsoft Internet Explorer 6, 7 and 8

ID: oval:org.secpod.oval:def:78Date: (C)2011-02-09   (M)2022-10-10
Class: VULNERABILITYFamily: windows




The host is installed with Microsoft Internet Explorer is prone to Cascading Style Sheets (CSS) memory corruption vulnerability. A flaw is present in the application, which fails to properly handle recursive memory access while importing a CSS. Successful exploitation could allow attackers to gain the same user rights as a local user using a crafted webpage. If attacker gains administrator rights, he/she can install programs, view, change, or delete data, or create new accounts with full user rights.

Platform:
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Product:
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
Microsoft Internet Explorer 8
Reference:
CVE-2010-3971
CVE    1
CVE-2010-3971
CPE    12
cpe:/o:microsoft:windows_server_2008:::x64
cpe:/o:microsoft:windows_server_2008:::x86
cpe:/o:microsoft:windows_7:::x64
cpe:/o:microsoft:windows_7:::x86
...

© SecPod Technologies