Vulnerabilities > CVE-2012-4782 - Resource Management Errors vulnerability in Microsoft Internet Explorer 10/9
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "CMarkup Use After Free Vulnerability."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 | |
OS | 12 |
Common Weakness Enumeration (CWE)
Msbulletin
bulletin_id | MS12-077 |
bulletin_url | |
date | 2012-12-11T00:00:00 |
impact | Remote Code Execution |
knowledgebase_id | 2761465 |
knowledgebase_url | |
severity | Critical |
title | Cumulative Security Update for Internet Explorer |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS12-077.NASL |
description | The remote host is missing Internet Explorer (IE) Security Update 2761465. The installed version of IE is affected by vulnerabilities that could allow an attacker to execute arbitrary code on the remote host. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 63224 |
published | 2012-12-11 |
reporter | This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/63224 |
title | MS12-077: Cumulative Security Update for Internet Explorer (2761465) |
Oval
accepted | 2014-08-18T04:01:29.698-04:00 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
class | vulnerability | ||||||||||||||||||||||||||||||||||||||||||||||||||||
contributors |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
definition_extensions |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
description | Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "CMarkup Use After Free Vulnerability." | ||||||||||||||||||||||||||||||||||||||||||||||||||||
family | windows | ||||||||||||||||||||||||||||||||||||||||||||||||||||
id | oval:org.mitre.oval:def:16066 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
status | accepted | ||||||||||||||||||||||||||||||||||||||||||||||||||||
submitted | 2012-12-12T10:50:10 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
title | CMarkup Use After Free Vulnerability - MS12-077 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
version | 76 |