Microsoft Internet Explorer 'ReleaseInterface()' Remote Code Execution Vulnerability

Microsoft Internet Explorer 'ReleaseInterface()' Remote Code Execution Vulnerability

References:

Announcing cross_fuzz, a potential 0-day in circulation, and more (Michal Zalewski)
Fuzzer variant: cross_fuzz_msie_randomized_seed.html (Microsoft)
Microsoft Internet Explorer Homepage (Microsoft)
ASA-2011-094 MS11-018 Cumulative Security Update for Internet Explorer (2497640) (Avaya)
Microsoft Security Bulletin MS11-018 (Microsoft)
Vulnerability Note VU#427980 Microsoft Internet Explorer 8 use-after-free vulner (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus