what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Zero Day Initiative Advisory 12-190 https://packetstormsecurity.com/files/119008/ZDI-12-190.txt https://packetstormsecurity.com/files/119008/ZDI-12-190.txt https://packetstormsecurity.com/files/119008/Zero-Day-Initiative-Advisory-12-190.html Fri, 21 Dec 2012 23:57:00 GMT Zero Day Initiative Advisory 12-190 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the 'onpropertychange' user callback function for the document.title. If the function changes the document in the callback function by using, for example, a document.write call, this can result in a use-after-free vulnerability. This can lead to remote code execution under the context of the program.

Related Files

No related files
packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close