Microsoft Internet Explorer vulnerabilities

CVE-2011-1256 [CRITICAL] CWE-908 CVE-2011-1256: Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows rem Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "DOM Modification Memory Corruption Vulnerability."

CVE-2011-1260 [CRITICAL] CWE-119 CVE-2011-1260: Microsoft Internet Explorer 8 and 9 does not properly handle objects in memory, which allows remote Microsoft Internet Explorer 8 and 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "Layout Memory Corruption Vulnerability."

CVE-2011-1266 [CRITICAL] CWE-908 CVE-2011-1266: The Vector Markup Language (VML) implementation in vgx.dll in Microsoft Internet Explorer 6 through The Vector Markup Language (VML) implementation in vgx.dll in Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "VML Memory Corruption Vulnerability."

CVE-2011-1262 [CRITICAL] CWE-908 CVE-2011-1262: Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows rem Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "HTTP Redirect Memory Corruption Vulnerability."

CVE-2011-1255 [CRITICAL] CWE-908 CVE-2011-1255: The Timed Interactive Multimedia Extensions (aka HTML+TIME) implementation in Microsoft Internet Exp The Timed Interactive Multimedia Extensions (aka HTML+TIME) implementation in Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "Time Element Memory Corruption Vulnerability."

CVE-2011-1252 [MEDIUM] CWE-79 CVE-2011-1252: Cross-site scripting (XSS) vulnerability in the SafeHTML function in the toStaticHTML API in Microso Cross-site scripting (XSS) vulnerability in the SafeHTML function in the toStaticHTML API in Microsoft Internet Explorer 7 and 8, Office SharePoint Server 2007 SP2, Office SharePoint Server 2010 Gold and SP1, Groove Server 2010 Gold and SP1, Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inje

CVE-2011-1246 [MEDIUM] CWE-200 CVE-2011-1246: Microsoft Internet Explorer 8 does not properly handle content settings in HTTP responses, which all Microsoft Internet Explorer 8 does not properly handle content settings in HTTP responses, which allows remote web servers to obtain sensitive information from a different (1) domain or (2) zone via a crafted response, aka "MIME Sniffing Information Disclosure Vulnerability."

CVE-2011-1258 [MEDIUM] CWE-668 CVE-2011-1258: Microsoft Internet Explorer 6 through 8 does not properly restrict web script, which allows user-ass Microsoft Internet Explorer 6 through 8 does not properly restrict web script, which allows user-assisted remote attackers to obtain sensitive information from a different (1) domain or (2) zone via vectors involving a drag-and-drop operation, aka "Drag and Drop Information Disclosure Vulnerability."

CVE-2011-2383 [MEDIUM] CWE-20 CVE-2011-2383: Microsoft Internet Explorer 9 and earlier does not properly restrict cross-zone drag-and-drop action Microsoft Internet Explorer 9 and earlier does not properly restrict cross-zone drag-and-drop actions, which allows user-assisted remote attackers to read cookie files via vectors involving an IFRAME element with a SRC attribute containing an http: URL that redirects to a file: URL, as demonstrated by a Facebook game, related to a "cookiejacking" issue

CVE-2011-2382 [MEDIUM] CWE-20 CVE-2011-2382: Microsoft Internet Explorer 8 and earlier, and Internet Explorer 9 beta, does not properly restrict Microsoft Internet Explorer 8 and earlier, and Internet Explorer 9 beta, does not properly restrict cross-zone drag-and-drop actions, which allows user-assisted remote attackers to read cookie files via vectors involving an IFRAME element with a SRC attribute containing a file: URL, as demonstrated by a Facebook game, related to a "cookiejacking" issue.

CVE-2011-1713 [MEDIUM] CVE-2011-1713: Microsoft msxml.dll, as used in Internet Explorer 8 on Windows 7, allows remote attackers to obtain Microsoft msxml.dll, as used in Internet Explorer 8 on Windows 7, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function. NOTE: this might overlap CVE-2011-1202.

CVE-2011-0094 [CRITICAL] CWE-399 CVE-2011-0094: Use-after-free vulnerability in Microsoft Internet Explorer 6 and 7 allows remote attackers to execu Use-after-free vulnerability in Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "Layouts Handling Memory Corruption Vulnerability."

CVE-2011-1245 [MEDIUM] CWE-200 CVE-2011-1245: Microsoft Internet Explorer 6 and 7 does not properly restrict script access to content from a (1) d Microsoft Internet Explorer 6 and 7 does not properly restrict script access to content from a (1) different domain or (2) different zone, which allows remote attackers to obtain sensitive information via a crafted web site, aka "Javascript Information Disclosure Vulnerability."

CVE-2011-1244 [MEDIUM] CWE-1021 CVE-2011-1244: Microsoft Internet Explorer 6, 7, and 8 does not enforce intended domain restrictions on content acc Microsoft Internet Explorer 6, 7, and 8 does not enforce intended domain restrictions on content access, which allows remote attackers to obtain sensitive information or conduct clickjacking attacks via a crafted web site, aka "Frame Tag Information Disclosure Vulnerability."

CVE-2011-1345 [CRITICAL] CVE-2011-1345: Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows rem Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, as demonstrated by Stephen Fewer as the first of three chained vulnerabilities during a Pwn2Own competition at CanSecWest 2011, aka "Object

CVE-2011-1346 [CRITICAL] CVE-2011-1346: Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to e Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Stephen Fewer as the second of three chained vulnerabilities during a Pwn2Own competition at CanSecWest 2011.

CVE-2011-1347 [HIGH] CVE-2011-1347: Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to b Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to bypass Protected Mode and create arbitrary files by leveraging access to a Low integrity process, as demonstrated by Stephen Fewer as the third of three chained vulnerabilities during a Pwn2Own competition at CanSecWest 2011.

CVE-2011-0036 [CRITICAL] CVE-2011-0036: Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows rem Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, related to a "dangling pointer," aka "Uninitialized Memory Corruption Vulnerability," a different vulnerabili

CVE-2011-0035 [CRITICAL] CVE-2011-0035: Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows rem Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability," a different vulnerability than CVE-2010-2556 and CVE-201

CVE-2011-0038 [CRITICAL] CVE-2011-0038: Untrusted search path vulnerability in Microsoft Internet Explorer 8 might allow local users to gain Untrusted search path vulnerability in Microsoft Internet Explorer 8 might allow local users to gain privileges via a Trojan horse IEShims.dll in the current working directory, as demonstrated by a Desktop directory that contains an HTML file, aka "Internet Explorer Insecure Library Loading Vulnerability."