Microsoft Internet Explorer 9 does not properly handle the creation and initialization of string objects, which allows remote attackers to read data from arbitrary process-memory locations via a crafted web site, aka “Null Byte Information Disclosure Vulnerability.”
CPE | Name | Operator | Version |
---|---|---|---|
internet_explorer | eq | 9 |