Release DateOct 14, 2009 |
Severitycritical |
ImpactSystem Compromise. |
DescriptionThis indicates an attempt to exploit a remote code execution vulnerability in Microsoft Internet Explorer.The vulnerability is caused by an error that occurs when the vulnerable software handles an object that has not been correctly initialized or has been deleted. It allows a remote attacker to execute arbitrary code. |
Affected ProductsMicrosoft Internet Explorer 8 and previous versions. |
Recommended ActionsApply patch:http://www.microsoft.com/technet/security/Bulletin/MS09-054.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2009-2531 |
Reference/shttp://www.microsoft.com/technet/security/Bulletin/MS09-054.mspx (MS-ID)http://www.securityfocus.com/bid/36616 (BugTraq) |
