Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Microsoft Internet Explorer Remote Code Execution Vulnerability

High

Synopsis

The remote host is affected by a remote code execution vulnerability.

Description

The remote Internet Explorer install is affected by an unspecified use-after-free vulnerability related to the VML and Flash components. By exploiting this flaw, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application. Internet Explorer versions 6 through 11 are vulnerable.

Solution

Apply the IE settings and workarounds suggested by Microsoft in security advisory 2963983. (https://technet.microsoft.com/en-US/library/security/2963983)