CVE-2011-0347

Published: Jan 7, 2011Modified: Apr 29, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Microsoft Internet Explorer on Windows XP allows remote attackers to trigger an incorrect GUI display and have unspecified other impact via vectors related to the DOM implementation, as demonstrated by cross_fuzz.

Affected (1)

Products: Microsoft: Internet Explorer

Microsoft

1 product

Internet Explorer

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	All versions

Running on/with	Platform Versions
Microsoft Windows Xp	All versions

References (18)

http://archives.neohapsis.com/archives/fulldisclosure/2010-12/0698.html

Source: cve@mitre.org

http://blogs.technet.com/b/srd/archive/2011/01/07/assessing-the-risk-of-public-issues-currently-being-tracked-by-the-msrc.aspx

Source: cve@mitre.org

http://lcamtuf.blogspot.com/2011/01/announcing-crossfuzz-potential-0-day-in.html

Source: cve@mitre.org

http://lcamtuf.coredump.cx/cross_fuzz/fuzzer_timeline.txt

Source: cve@mitre.org

http://lcamtuf.coredump.cx/cross_fuzz/msie_display.jpg

Source: cve@mitre.org

http://www.microsoft.com/technet/security/advisory/2490606.mspx

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/archive/1/515506/100/0/threaded

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/64571

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12514

Source: cve@mitre.org

http://archives.neohapsis.com/archives/fulldisclosure/2010-12/0698.html