Threat Monitor
Troj.Exploit.JS.Agent.bee
| Aliase: | |
|---|---|
| Pattern: | 201101271330 |
| Threat Typ | Verbreitung | Betroffene Systeme | Gefährlichkeit |
|---|---|---|---|
|
|
|
|
Microsoft Internet Explorer is prone to a remote code execution vulnerability.
The vulnerability is caused due to an invalid flag reference within the mshtml.dll module when processing a Cascading Style Sheets (CSS) "clip" attribute with a specific position. This can be exploited to overwrite a byte in a virtual table pointer. By persuading a victim to visit a malicious Web page, a remote attacker could exploit this vulnerability to access an invalid flag reference to a freed object and execute arbitrary code on the system with the privileges of the victim.
Affected: Microsoft Internet Explorer 8.0
Microsoft Internet Explorer 7.0
Microsoft Internet Explorer 6.0
The vulnerability is caused due to an invalid flag reference within the mshtml.dll module when processing a Cascading Style Sheets (CSS) "clip" attribute with a specific position. This can be exploited to overwrite a byte in a virtual table pointer. By persuading a victim to visit a malicious Web page, a remote attacker could exploit this vulnerability to access an invalid flag reference to a freed object and execute arbitrary code on the system with the privileges of the victim.
Affected: Microsoft Internet Explorer 8.0
Microsoft Internet Explorer 7.0
Microsoft Internet Explorer 6.0
