Threat Landscape Dashboard

Assessing today's threats and the relationships between them

CVE-2012-4792

9.00
6.00
Description:

(MS13-008) Microsoft Internet Explorer CDwnBindInfo Use-After-Free Code Execution (2799329). In-the-wild exploitation has been observed in association with the website for the Council on Foreign Relations. The issue is specific to the way in which Internet Explorer accesses a objects in memory that have been deleted/improperly allocated (CButton object). The vulnerability may result in corrupt memory allowing an attacker to execute arbitrary code.

Modified Date:

2016-05-27