cpe:/a:microsoft:ie:5.01 cpe:/a:microsoft:ie:6 cpe:/a:microsoft:ie:7 cpe:/a:microsoft:internet_explorer:6:sp1 cpe:/a:microsoft:internet_explorer:6:sp2 CVE-2008-2256 2008-08-13T08:42:00.000-04:00 2017-09-28T21:31:05.113-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2008-08-13T15:03:00.000-04:00 SECTRACK 1020674 BID 30611 SECUNIA 31375 VUPEN ADV-2008-2349 HP HPSBST02360 MS MS08-045 HP SSRT080117 CERT TA08-225A Microsoft Internet Explorer 5.01, 6, and 7 does not properly handle objects that have been incorrectly initialized or deleted, which allows remote attackers to cause a denial of service (crash) and execute arbitrary code via unknown vectors, aka "Uninitialized Memory Corruption Vulnerability."