Use-after-free vulnerability in the CMshtmlEd::Exec function in mshtml.dll in Microsoft Internet Explorer 6 through 9 allows remote malicious users to execute arbitrary code via a crafted web site, as exploited in the wild in September 2012.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet_explorer 6 |
||
microsoft internet_explorer 7 |
||
microsoft internet_explorer 8 |
||
microsoft internet_explorer 9 |
Fingers pointed at Yu Pingan & unnamed conspirators in PRC
A Chinese fella has been accused by the FBI of being a key team member in the hacking crew that took down the US Office of Personnel Management (OPM). Yu Pingan was cuffed at Los Angeles international airport by the Feds and this week charged with computer hacking. The OPM infiltration, first discovered in 2015, was a massive embarrassment to the US government. Hackers stole paperwork for security background checks on 21.56 million individuals – including the fingerprint records for 5.6 millio...