Lucene search

[email protected]CVE-2012-0169

HistoryApr 10, 2012 - 9:55 p.m.

CVE-2012-0169

2012-04-1021:55:01

CWE-94

[email protected]

web.nvd.nist.gov

cve-2012-0169

microsoft

internet explorer

memory handling

vulnerability

nvd

jscript9

remote code execution

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

Low

0.393 Low

EPSS

Percentile

97.3%

JSON

Microsoft Internet Explorer 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka “JScript9 Remote Code Execution Vulnerability.”

Affected configurations

NVD

Node

microsoftinternet_explorerMatch9

AND

microsoftwindows_7Match-

microsoftwindows_7Match-sp1

microsoftwindows_server_2008Match-sp2

microsoftwindows_server_2008Matchr2

microsoftwindows_server_2008Matchr2sp1

microsoftwindows_vistaMatch-sp2

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq9

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	9

References

osvdb.org/81127

www.securityfocus.com/bid/52902

www.securitytracker.com/id?1026901

www.us-cert.gov/cas/techalerts/TA12-101A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-023

exchange.xforce.ibmcloud.com/vulnerabilities/74380

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15611

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

Low

0.393 Low

EPSS

Percentile

97.3%

JSON

Related for CVE-2012-0169

nvd1 symantec1 cvelist1 seebug1 prion1 openvas2 securityvulns1 nessus1 mskb1