Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2523

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-2523
Last Modified 02 Nov 2013 11:24:18
Published 14 Aug 2012 09:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-2523

Summary

Integer overflow in Microsoft Internet Explorer 8 and 9, JScript 5.8, and VBScript 5.8 on 64-bit platforms allows remote attackers to execute arbitrary code by leveraging an incorrect size calculation during object copying, aka "JavaScript Integer Overflow Remote Code Execution Vulnerability."

Vulnerable Systems

Application

  • Microsoft Internet Explorer 8

  • Microsoft Internet Explorer 9

  • Microsoft Jscript 5.8

  • Microsoft Vbscript 5.8


References

MS - MS12-056

MS - MS12-052

CERT - TA12-227A

Related Patches

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows Vista (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 7 for Windows Server 2008 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows Server 2008 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 9 for Windows 7 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows 7 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 6 for Windows XP (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 7 for Windows Vista x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows Vista x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 9 for Windows Vista x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 R2 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows Server 2008 R2 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows 7 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 9 for Windows 7 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 7 for Windows Server 2008 x64 (KB2722913)

MS12-052 Cumulative Security Update for Internet Explorer 8 for Windows Server 2008 x64 (KB2722913)

MS12-056 Security Update for Windows Vista x64 (KB2706045)

MS12-056 Security Update for Windows Server 2008 R2 x64 (KB2706045)

MS12-056 Security Update for Windows Server 2003 x64 (KB2706045)

MS12-056 Security Update for Windows 7 x64 (KB2706045)

MS12-056 Security Update for Windows Server 2008 x64 (KB2706045)


Last Updated: 27 May 2016 10:51:41