Microsoft Internet Explorer MSHTML DOMImplementation Type Confusion

Posted by deepcore on November 30, 2016 – 5:30 am

A specially crafted web-page can cause a type confusion vulnerability in Microsoft Internet Explorer 8 through to 11. An attacker can cause code to be executed with a stack layout it does not expect, or have code attempt to execute a method of an object using a vftable, when that object does not have a vftable. Successful exploitation can lead to arbitrary code execution.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Schoolhos CMS 2.29 SQL Injection Linux Kernel Dirty COW PTRACE_POKEDATA Privilege Escalation »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Microsoft Internet Explorer MSHTML DOMImplementation Type Confusion

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL