Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


Vulnerability protection

Internet Explorer cumulative security update


Report ID: MS201207002
Date Published: 16 July 2012

Criticality: Critical
Compromise Type: remote-code-execution
Compromise From: remote


Affected Product/Component:

Internet Explorer 9




Summary

Two vulnerabilities were reported found in Internet Explorer, each of which could be exploited by an attacker to execute arbitrary code and take control of an affected system.



Detailed Description

Microsoft has released a cumulative security update for Internet Explorer to address two reported vulnerabilities. The vulnerabilities were caused by memory corruption that resulted from attempting to access a deleted object. Upon successful exploit, an attacker could execute arbitrary code and take control of the affected system.

The latest update fixes these issues by modifying the way that objects in memory are handled. Users are recommended to install this update to protect their systems from potential exploit.



CVE Reference

CVE-2012-1522, CVE-2012-1524



Solution

Install the latest security patch for applicable system, available for download from (https://technet.microsoft.com/en-us/security/bulletin/ms12-044)




Security Advisories

For a list of known vulnerabilities affecting F-Secure products and the released fixes, please refer to the Security Advisories page.