CVE-2012-4792
MITRE CVE Reference: CVE-2012-4792
Description: Use-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object, and exploited in the wild in December 2012.
Usage
Targetted asset: Microsoft Internet Explorer
Exploit kits using this vulnerability/ Exploit kits utilisant cette vulnérabilité:
Botnets using this vulnerability to function/propagate:
- Botnets:
Campaigns using this vulnerability:
- Campaigns:
Packages includingthis vulnerability:
- Packages:
Publications
Author | Editor | Year | |
---|---|---|---|
Lights Out: Dragonfly is on the move | Sariel Moshe | CyActive | 2014 |
MITRE CVE LICENSE: The MITRE Corporation (MITRE) hereby grants you a non-exclusive, royalty-free license to use Common Vulnerabilities and Exposures (CVE®) for research, development, and commercial purposes. Any copy you make for such purposes is authorized provided that you reproduce MITRE’s copyright designation and this license in any such copy. MITRE CVE®, TERMS OF USE: [1]