Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1963

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-1963
Last Modified 04 Oct 2011 10:54:27
Published 10 Aug 2011 05:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1963

Summary

Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "XSLT Memory Corruption Vulnerability."

Vulnerable Systems

Application

  • Microsoft Ie 7

  • Microsoft Ie 8

  • Microsoft Ie 9


References

CERT - TA11-221A

MS - MS11-057


Last Updated: 27 May 2016 10:56:52