MS11-052: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2544521)
High Nessus Plugin ID 55132
Arbitrary code can be executed on the remote host through a web browser.
The remote host is missing Internet Explorer (IE) Security Update 2497640. The installed version of IE is affected by a vulnerability in the implementation of the Vector Markup Language (VML) that could allow an attacker to execute arbitrary code on the remote host.
Microsoft has released a set of patches for XP, 2003, Vista, 2008, 7, and 2008 R2.