MS.IE.GetElementsByTagName.CSS.Handling

Name	MS.IE.GetElementsByTagName.CSS.Handling.Code.Execution
Last Updated Date	Dec 01, 2009
Release Date	Nov 24, 2009
Severity	Critical
Impact	System Compromise: Remote attackers can gain control of vulnerable systems.
Description	It indicates a possible exploit of a remote code-execution vulnerability in Microsoft Internet Explorer.
Affected Products	Microsoft Internet Explorer 6 Microsoft Internet Explorer 7
Recommended Actions	Disable Javascript in Internet Explorer.
Common Vulnerabilities and Exposures (CVE)	http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-3762
Reference/s	http://www.securityfocus.com/bid/37085 (BugTraq) http://www.vupen.com/english/advisories/2009/3301 (FrSIRT) http://www.microsoft.com/technet/security/advisory/977981.mspx

Reference: VID-17968