CVE-2008-0077 Information

Description

Use-after-free vulnerability in Microsoft Internet Explorer 6 SP1 6 SP2 and and 7 allows remote attackers to execute arbitrary code by assigning malformed values to certain properties as demonstrated using the by property of an animateMotion SVG element aka \Property Memory Corruption Vulnerability.\

Reference

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=661 http://marc.info/?l=bugtraq&m=120361015026386&w=2 http://secunia.com/advisories/28903 http://www.kb.cert.org/vuls/id/228569 http://www.securityfocus.com/archive/1/488048/100/0/threaded http://www.securityfocus.com/bid/27666 http://www.securitytracker.com/id?1019380 http://www.us-cert.gov/cas/techalerts/TA08-043C.html http://www.vupen.com/english/advisories/2008/0512/references http://www.zerodayinitiative.com/advisories/ZDI-08-006.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-010 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A5396