Wednesday, 15 December 2010

Microsoft Internet Explorer Select Element Use After Free Vulnerability

TippingPoint's Zero Day Initiative (ZDI) have published an advisory for a use after free vulnerability (MS10-090, CVE-2010-3345) in Microsoft Internet Explorer 8. This vulnerability was discovered by Stephen Fewer of Harmony Security.

You can read the full ZDI advisory here:
http://www.zerodayinitiative.com/advisories/ZDI-10-288/

And the Microsoft advisory here:
http://www.microsoft.com/technet/security/bulletin/MS10-090.mspx

No comments: