Cumulative Security Update for Internet Explorer (956390)
Summary:
Check for the vulnerable version of Internet Explorer
Description:
Description:
MS08-058
Overview: This host is missing critical security update according to Microsoft Bulletin MS08-058.
Vulnerability Insight: Multiple flaws are due to, - the browser incorrectly interpreting the origin of scripts when setting the Window location object. - the browser incorrectly interpreting the origin of scripts when handling certain HTML elements. - the browser incorrectly interpreting the origin of scripts when handling certain events. - a memory corruption error when the browser attempts to access an object which has not been initialized or has been deleted. - a memory corruption error when the browser attempts to access uninitialized memory while processing certain HTML objects.
Impact: Successful exploitation could allow attackers to execute arbitrary code via a malicious web page and can gain access to a browser window in another domain leading read cookies or cross domain scripting attacks.
Impact Level: System
Affected Software/OS: Internet Explorer 5.01 & 6 on MS Windows 2000 Internet Explorer 6 on MS Windows 2003 and XP Internet Explorer 7 on MS Windows 2003 and XP Internet Explorer 7 on MS Windows 2008 and Vista