CVE-2012-4792
Microsoft Internet Explorer Use-After-Free Vulnerability
⚠ KEVEPSS 91.2%
Description
Microsoft Internet Explorer contains a use-after-free vulnerability that allows a remote attacker to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object.
How to fix CVE-2012-4792
No package mapping is available — consult the references below for vendor-specific guidance.
Is CVE-2012-4792 being exploited?
Yes — CVE-2012-4792 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (0)
No package mapping in OSV.