Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


Vulnerability protection

Internet Explorer security update


Report ID: MS201301008
Date Published: 15 January 2013

Criticality: Critical
Compromise Type: remote-code-execution
Compromise From: remote


Affected Product/Component:

Internet Explorer 6
Internet Explorer 7
Internet Explorer 8




Summary

A security update for Internet Explorer has been released to patch a previously reported 0-day vulnerability.

.



Detailed Description

Microsoft has released a security update to resolve a previously reported 0-day vulnerability in Internet Explorer (IE), which affected IE6, IE7 and IE8. The vulnerability could, upon successful exploitation, allow a remote attacker to execute arbitrary code and take complete control of an infected machine. 

The security update introduces a fix by modifying the way that IE handles objects in memory. Users are recommended to install this update to protect their system.

 

NOTE: This update resolve the vulnerability previously reported in "Internet Explorer Remote Code Execution Vulnerability."



CVE Reference

CVE-2012-4792



Solution

Install the latest security patch for applicable system, available for download from (https://technet.microsoft.com/en-us/security/bulletin/ms13-008)




Security Advisories

For a list of known vulnerabilities affecting F-Secure products and the released fixes, please refer to the Security Advisories page.