Check Point Advisories

Microsoft Time Remote Code Execution (MS11-090)

Check Point Reference: CPAI-2011-579
Date Published: 13 Dec 2011
Severity: Critical
Last Updated: Saturday 01 January, 2011
Source: Microsoft Security Bulletin MS11-090
Protection Provided by:
Who is Vulnerable? Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Vulnerability Description A remote code execution vulnerability has been reported in Microsoft Internet Explorer (IE).
Update/Patch AvaliableApply patches from: MS11-090
Vulnerability DetailsThe vulnerability is due to an error in the way that multiple ActiveX controls are loaded by Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer. Successful exploitation could allow an attacker to execute arbitrary code on an affected system.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK