Zero Day Initiative Advisory 12-190
https://packetstormsecurity.com/files/119008/ZDI-12-190.txt
https://packetstormsecurity.com/files/119008/ZDI-12-190.txthttps://packetstormsecurity.com/files/119008/Zero-Day-Initiative-Advisory-12-190.htmlFri, 21 Dec 2012 23:57:00 GMTZero Day Initiative Advisory 12-190 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the 'onpropertychange' user callback function for the document.title. If the function changes the document in the callback function by using, for example, a document.write call, this can result in a use-after-free vulnerability. This can lead to remote code execution under the context of the program.