Lucene search
MicrosoftCVE-2011-1995HistoryOct 12, 2011 - 2:52 a.m.
CVE-2011-1995
2011-10-1202:52:43
CWE-908
microsoft
web.nvd.nist.gov
35
microsoft
internet explorer
cve-2011-1995
remote code execution
vulnerability
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
Low
EPSS
0.272
Percentile
96.8%
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that was not properly initialized, aka “OLEAuto32.dll Remote Code Execution Vulnerability.”
Affected configurations
Node
microsoftinternet_explorerMatch6
microsoftwindows_server_2003Match-sp2
ORmicrosoftwindows_xpMatch-sp2x64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch7
microsoftwindows_server_2003Match-sp2
ORmicrosoftwindows_server_2008Match--
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_vistaMatch-sp1
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch8
microsoftwindows_7Match-
ORmicrosoftwindows_server_2003Match-sp2
ORmicrosoftwindows_server_2008Match--
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2-
ORmicrosoftwindows_server_2008Matchr2sp1
ORmicrosoftwindows_vistaMatch-sp1
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch9
microsoftwindows_7Match-
ORmicrosoftwindows_7Match-sp1
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2-
ORmicrosoftwindows_server_2008Matchr2sp1
ORmicrosoftwindows_vistaMatch-sp2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_explorer | 6 | cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:* |
| microsoft | windows_server_2003 | - | cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:* |
| microsoft | windows_xp | - | cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:x64:* |
| microsoft | windows_xp | - | cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:* |
| microsoft | internet_explorer | 7 | cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:* |
| microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:-:*:*:*:*:*:* |
| microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:* |
| microsoft | windows_vista | - | cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:*:*:*:* |
| microsoft | windows_vista | - | cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:* |
| microsoft | windows_xp | - | cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:* |
Related
nvd
nvd
CVE-2011-1995
2011-10-12 02:52:43
cvelist
cvelist
CVE-2011-1995
2011-10-12 01:00:00
symantec
symantec
prion
prion
Remote code execution
2011-10-12 02:52:00
checkpoint_advisories
checkpoint_advisories
seebug
seebug
Microsoft IE OLEAuto32.dll内存破坏漏洞(MS11-081)
2011-10-12 00:00:00
mskb
mskb
MS11-081: Cumulative Security Update for Internet Explorer: October 11, 2011
2020-05-21 04:42:54
nessus
nessus
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (2586448)
2011-10-12 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (2586448)
2011-10-12 00:00:00
securityvulns
securityvulns
Microsoft Internet Explorer multiple security vulnerabilities
2011-10-24 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
Low
EPSS
0.272
Percentile
96.8%
Related for CVE-2011-1995