CERT mailing list archives
Microsoft Releases Security Advisory for Internet Explorer 9 and 10 Use-After-Free Vulnerability
From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Thu, 20 Feb 2014 19:06:15 -0600
NCCIC / US-CERT National Cyber Awareness System: Microsoft Releases Security Advisory for Internet Explorer 9 and 10 Use-After-Free Vulnerability [ https://www.us-cert.gov/ncas/current-activity/2014/02/20/Microsoft-Releases-Security-Advisory-Internet-Explorer ] 02/20/2014 03:35 PM EST Original release date: February 20, 2014 Microsoft has released Security Advisory 2934088 [ http://technet.microsoft.com/en-us/security/advisory/2934088 ] to address a use-after-free vulnerability in Internet Explorer 9 and 10, which can be used by a remote attacker to take control of a vulnerable system. US-CERT and Microsoft are aware of targeted attacks currently exploiting this vulnerability. Users and administrators are encouraged to review Microsoft Security Advisory 2934088 [ http://technet.microsoft.com/en-us/security/advisory/2934088 ], CERT/CC Vulnerability Note VU732479 [ http://www.kb.cert.org/vuls/id/732479 ] and take appropriate actions to mitigate this vulnerability. ________________________________________________________________________ This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy & Use [ http://www.us-cert.gov/privacy/ ] policy. ________________________________________________________________________ OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ http://www.us-cert.gov/related-resources ] STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Current thread:
- Microsoft Releases Security Advisory for Internet Explorer 9 and 10 Use-After-Free Vulnerability US-CERT (Feb 20)