1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: MS IE Time Element CVE-2011-1255 2

Attack: MS IE Time Element CVE-2011-1255 2

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a remote code execution vulnerability in Microsoft Internet Explorer

Additional Information

Microsoft Internet Explorer is a web browser available for Microsoft Windows platforms.

Microsoft Internet Explorer is prone to a remote code-execution vulnerability. This issue occurs when the application attempts to access an object that is not properly initialized or has been deleted. This issue relates to time element handling.

An attacker can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage.

Successful exploits will allow an attacker to run arbitrary code in the context of the user running the affected application. Failed attacks will cause denial-of-service conditions.

Affected

  • Various Internet Explorer versions

Response

The vendor has released an advisory and updates. Please see the references for details.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube