Skip to main content

Microsoft Internet Explorer Use-after-free Code Execution Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 10 Mar 2010 5421 Views

RISK: Medium Risk

A vulnerability has been identified in Microsoft Internet Explorer, which could be exploited by remote attackers to compromise a vulnerable system. This issue is caused by a user-after-free error in the Internet Explorer Peer Objects module "iepeers.dll" when processing certain data, which could be exploited by remote attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page.


Impact

  • Remote Code Execution

System / Technologies affected

  • Microsoft Internet Explorer 6.x
  • Microsoft Internet Explorer 7.x

Solutions

Do not visit untrusted sites.

Note: There is no patch available for this vulnerability currently.


Vulnerability Identifier

  • No CVE information is available

Source