CVE-2008-0077

Use-after-free vulnerability in Microsoft Internet Explorer 6 SP1, 6 SP2, and and 7 allows remote attackers to execute arbitrary code by assigning malformed values to certain properties, as demonstrated using the by property of an animateMotion SVG element, aka "Property Memory Corruption Vulnerability."

CVSS Metrics

Affected Products (3)

GitHub Security Advisory GHSA-mf54-6363-29h5

Use-after-free vulnerability in Microsoft Internet Explorer 6 SP1, 6 SP2, and and 7 allows remote...

References (24)

• http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=661 Broken Link
• http://marc.info/?l=bugtraq&m=120361015026386&w=2 Mailing List
• http://secunia.com/advisories/28903 Broken Link, Vendor Advisory
• http://www.kb.cert.org/vuls/id/228569 Third Party Advisory, US Government Resource
• http://www.securityfocus.com/archive/1/488048/100/0/threaded Broken Link, Third Party Advisory, VDB Entry
• http://www.securityfocus.com/bid/27666 Broken Link, Third Party Advisory, VDB Entry
• http://www.securitytracker.com/id?1019380 Broken Link, Third Party Advisory, VDB Entry
• http://www.us-cert.gov/cas/techalerts/TA08-043C.html Broken Link, Third Party Advisory, US Government Resource
• http://www.vupen.com/english/advisories/2008/0512/references Broken Link, Vendor Advisory
• http://www.zerodayinitiative.com/advisories/ZDI-08-006.html Third Party Advisory, VDB Entry
• https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-010 Patch, Vendor Advisory
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5396 Broken Link
• http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=661 Broken Link
• http://marc.info/?l=bugtraq&m=120361015026386&w=2 Mailing List
• http://secunia.com/advisories/28903 Broken Link, Vendor Advisory