MS11-003 - Cascading Style Sheets (CSS) memory corruption vulnerability in Microsoft Internet Explorer 6, 7 and 8ID: oval:org.secpod.oval:def:78 | Date: (C)2011-02-09 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Internet Explorer is prone to Cascading Style Sheets (CSS) memory corruption vulnerability. A flaw is present in the application, which fails to properly handle recursive memory access while importing a CSS. Successful exploitation could allow attackers to gain the same user rights as a local user using a crafted webpage. If attacker gains administrator rights, he/she can install programs, view, change, or delete data, or create new accounts with full user rights.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Vista |
Microsoft Windows XP |
Product: |
Microsoft Internet Explorer 6 |
Microsoft Internet Explorer 7 |
Microsoft Internet Explorer 8 |