Vulnerabilities

CVE-2013-3893

by Fred · 18/09/2013

Use-after-free vulnerability in the SetMouseCapture implementation in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code via crafted JavaScript strings, as demonstrated by use of an ms-help: URL that triggers loading of hxds.dll.

Date published : 2013-09-18

http://www.securityfocus.com/bid/62453

http://www.us-cert.gov/ncas/alerts/TA13-288A

Similar

Tags: Cybersecurity Alert