MS11-018 - Remote code execution vulnerability in Microsoft Internet Explorer.ID: oval:org.secpod.oval:def:451 | Date: (C)2011-03-18 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Internet Explorer and is prone to arbitrary code execution vulnerability. A flaw is present in the browser, which allows bypassing DEP (data execution prevention) and ASLR (address space layout randomization) protection mechanisms used in IE Protected Mode sandbox. Successful exploitation could allow remote attackers to execute arbitrary code or cause denial of service.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Vista |
Microsoft Windows XP |
Product: |
Microsoft Internet Explorer 6 |
Microsoft Internet Explorer 7 |
Microsoft Internet Explorer 8 |