Memory Corruption Vulnerability in Microsoft Internet Explorer
CVE-2012-1545

Currently unrated

Key Information:

Vendor: Microsoft
Status: Ie; Internet Explorer
Vendor: CVE Published:; 9 March 2012

Summary

Microsoft Internet Explorer versions 6 through 10 Consumer Preview are vulnerable to a memory corruption issue that allows remote attackers to bypass Protected Mode. This vulnerability can potentially lead to a denial of service, affecting the stability and security of the affected browsers. The flaw was demonstrated by VUPEN at the Pwn2Own competition held during CanSecWest 2012, showcasing how attackers could exploit access to a Low integrity process.

References

http://pwn2own.zerodayinitiative.com/status.html

x_refsource_MISC

http://arstechnica.com/business/news/2012/03/ie-9-on-late...

x_refsource_MISC

http://www.zdnet.com/blog/security/pwn2own-2012-ie-9-hack...

x_refsource_MISC

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 9, 2012