CVE-2012-1545

CWE-119 — Buffer Overflow4 documents4 sources

Severity

5.8MEDIUM

EPSS

7.0%

top 8.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft IE Microsoft Internet Explorer

Timeline

PublishedMar 9

Latest updateMay 13

Description

Microsoft Internet Explorer 6 through 9, and 10 Consumer Preview, allows remote attackers to bypass Protected Mode or cause a denial of service (memory corruption) by leveraging access to a Low integrity process, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2012.

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages2 packages

▶NVDmicrosoft/internet_explorer24 versions+23

▶NVDmicrosoft/ie10

🔴Vulnerability Details

GHSA

GHSA-37ch-hhvp-9r99: Microsoft Internet Explorer 6 through 9, and 10 Consumer Preview, allows remote attackers to bypass Protected Mode or cause a denial of service (memor↗2022-05-13

▶

OSV

openldap vulnerabilities↗2015-05-26

▶

CVEList

CVE-2012-1545: Microsoft Internet Explorer 6 through 9, and 10 Consumer Preview, allows remote attackers to bypass Protected Mode or cause a denial of service (memor↗2012-03-09

▶