Lucene search
MicrosoftCVE-2011-1257HistoryAug 10, 2011 - 9:55 p.m.
CVE-2011-1257
2011-08-1021:55:01
CWE-362
microsoft
web.nvd.nist.gov
37
2
cve-2011-1257
microsoft
internet explorer
remote attackers
arbitrary code
denial of service
memory corruption
CVSS2
7.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
Low
EPSS
0.248
Percentile
96.7%
Race condition in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via vectors involving access to an object, aka “Window Open Race Condition Vulnerability.”
Affected configurations
Node
microsoftinternet_explorerMatch6
microsoftwindows_server_2003Match-sp2
ORmicrosoftwindows_xpMatch-sp2x64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch7
microsoftwindows_server_2003Match-sp2
ORmicrosoftwindows_server_2008Match--
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_vistaMatch-sp1
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch8
microsoftwindows_7Match-
ORmicrosoftwindows_server_2003Match-sp2
ORmicrosoftwindows_server_2008Match--
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2-
ORmicrosoftwindows_server_2008Matchr2sp1
ORmicrosoftwindows_vistaMatch-sp1
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_explorer | 6 | cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:* |
| microsoft | windows_server_2003 | - | cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:* |
| microsoft | windows_xp | - | cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:x64:* |
| microsoft | windows_xp | - | cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:* |
| microsoft | internet_explorer | 7 | cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:* |
| microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:-:*:*:*:*:*:* |
| microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:* |
| microsoft | windows_vista | - | cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:*:*:*:* |
| microsoft | windows_vista | - | cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:* |
| microsoft | windows_xp | - | cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:* |
References
Social References
More
Related
securityvulns
securityvulns
cvelist
cvelist
CVE-2011-1257
2011-08-10 21:16:00
nvd
nvd
CVE-2011-1257
2011-08-10 21:55:01
checkpoint_advisories
checkpoint_advisories
Internet Explorer Window Open Race Condition (MS11-057; CVE-2011-1257)
2011-08-09 00:00:00
prion
prion
Race condition
2011-08-10 21:55:00
seebug
seebug
Microsoft Internet Explorer窗口打开竞争条件远程代码执行漏洞
2011-08-10 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (2559049)
2011-08-11 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (2559049)
2011-08-11 00:00:00
mskb
mskb
MS11-057: Cumulative Security Update for Internet Explorer: August 9, 2011
2020-05-21 04:45:55
nessus
nessus
CVSS2
7.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
Low
EPSS
0.248
Percentile
96.7%
Related for CVE-2011-1257