Release date:
Updated on:
Affected Systems:
Microsoft Internet Explorer 9.x
Microsoft Internet Explorer 8.x
Microsoft Internet Explorer 7.x
Description:
--------------------------------------------------------------------------------
Ms ie is a Web browser launched by Microsoft.
The execCommand function of IE has the release Reuse Vulnerability. Remote attackers may exploit this vulnerability to trick users into accessing malicious web pages to launch Trojan attacks and control the user system.
<* Source: instruder
Link: http://blog.vulnhunt.com/index.php/2012/09/17/ie-execcommand-fuction-use-after-free-vulnerability-0day/
Http://eromang.zataz.com/2012/09/16/zero-day-season-is-really-not-over-yet/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Microsoft
---------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.microsoft.com/windows/ie/default.asp