Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft Internet Explorer 5.01 through 7 allows remote attackers to execute arbitrary code via a crafted website using Javascript that creates, modifies, deletes, and accesses document objects using the tags property, which triggers heap corruption, related to uninitialized or deleted objects, a different issue than CVE-2007-3902 and CVE-2007-3903, and a variant of "Uninitialized Memory Corruption Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Explorer 代码注入漏洞
Vulnerability Description
Microsoft Internet Explorer(IE)是美国微软(Microsoft)公司的一款Windows操作系统附带的Web浏览器。 Microsoft Internet Explorer存在代码注入漏洞。IE没有正确的处理由JavaScript所创建、修改、删除然后访问的文档对象,成功利用此漏洞的攻击者可以获得与登录用户相同的用户权限。 如果储存了到文档节点的引用,然后通过独立的引用将其删除,内存中的文档模式就会变得不稳定,在这种不稳定的情况下访问标签属性会导致堆破坏。攻击者可以通过构建特
CVSS Information
N/A
Vulnerability Type
N/A