| Name | MS.IE.ActiveX.Control.Call.Memory.Corruption |
| Release Date | Jun 11, 2009 |
| Severity | High |
| Impact | Denial of service
System compromise |
| Description | This indicates an attack attempt against a memory-corruption vulnerability in Microsoft Internet Explorer.
The vulnerability is due to the software's handling of certain ActiveX Control calls. Attackers may exploit this to execute arbtirary code or cause denial of service. |
| Affected Products | Microsoft Internet Explorer 6.0 and 7.0 |
| Recommended Actions | Please refer to Microsoft advisory for further details or patches:
http://www.microsoft.com/technet/security/Bulletin/ms09-019.mspx |
| Common Vulnerabilities and Exposures (CVE) | http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-1528
|
| Microsoft Bulletin ID | MS09-019 http://www.microsoft.com/technet/security/Bulletin/ms09-019.mspx |