CVE-2012-1539Use After Free in Microsoft Internet Explorer

CWE-399CWE-416Use After Free3 documents3 sources
Severity
8.1HIGHNVD
EPSS
19.0%
top 4.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedNov 14
Latest updateMay 13

Description

Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site, aka "CTreePos Use After Free Vulnerability."

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-8h3g-5w8f-55gv: Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site, aka "CTreePos2022-05-13

🕵️Threat Intelligence

1
Zscaler
Zscaler Protects against Microsoft's Patch Cycle | Round 3
CVE-2012-1539 — Use After Free in Microsoft | cvebase