CVE-2011-1347 — Microsoft Internet Explorer vulnerability

2 documents2 sources

Severity

8.8HIGHNVD

EPSS

28.3%

top 3.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Explorer

Timeline

PublishedMar 10

Latest updateMay 13

Description

Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to bypass Protected Mode and create arbitrary files by leveraging access to a Low integrity process, as demonstrated by Stephen Fewer as the third of three chained vulnerabilities during a Pwn2Own competition at CanSecWest 2011.

CVSS vector

AV:N/AC:M/C:N/I:C/A:CExploitability: 8.6 | Impact: 9.2

Affected Packages1 packages

▶NVDmicrosoft/internet_explorer8

🔴Vulnerability Details

GHSA

GHSA-x753-r8m4-q2wg: Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to bypass Protected Mode and create arbitrary files by↗2022-05-13

▶