| CVE ID | CVE-2014-4067 |
| CVSS SCORE | 6.8, AV:N/AC:M/Au:N/C:P/I:P/A:P |
| AFFECTED VENDORS |
Microsoft |
| AFFECTED PRODUCTS |
Internet Explorer |
| VULNERABILITY DETAILS |
By setting a "background" style property in a specific way and then performing a visual transition, an attacker can cause Internet Explorer to write beyond an allocated region of memory. An attacker can leverage this vulnerability to execute code in the context of the browser. |
| ADDITIONAL DETAILS |
Microsoft has issued an update to correct this vulnerability. More details can be found at:
http://go.microsoft.com/fwlink/?LinkId=507027 |
| DISCLOSURE TIMELINE |
|
| CREDIT | lokihardt@asrt |
