Microsoft Internet Explorer (IE) contains a buffer overflow vulnerability that can be exploited to execute arbitrary code with the privileges of the user running IE.
It appears that this vulnerability was discovered using the mangleme tool.
By convincing a user to view a specially crafted HTML document (e.g., a web page or an HTML email message), an attacker could execute arbitrary code with the privileges of the user. The attacker could also cause IE (or the program using the WebBrowser control) to crash.
Apply a Patch
Microsoft Corporation Affected
Updated: November 03, 2004
We have not received a statement from the vendor.
The vendor has not provided us with any further information regarding this vulnerability.
We have no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.
This vulnerability was publicly reported by ned and SkyLined.
This document was written by Art Manion.
|Date First Published:||2004-11-03|
|Date Last Updated:||2004-12-10 14:42 UTC|