VYPR
High severity8.8NVD Advisory· Published Apr 15, 2009· Updated Jun 16, 2026

CVE-2009-0554

CVE-2009-0554

Description

Microsoft Internet Explorer 5.01 SP4, 6 SP1, 6 and 7 on Windows XP SP2 and SP3, 6 and 7 on Windows Server 2003 SP1 and SP2, 7 on Windows Vista Gold and SP1, and 7 on Windows Server 2008 allows remote attackers to execute arbitrary code via a web page that triggers presence of an object in memory that was (1) not properly initialized or (2) deleted, aka "Uninitialized Memory Corruption Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:microsoft:internet_explorer:5.01:sp4:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:microsoft:internet_explorer:5.01:sp4:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:6:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:*
    • (no CPE)range: 5.01 SP4, 6 SP1, 6, 7
  • Range: XP SP2, XP SP3, Server 2003 SP1, Server 2003 SP2, Vista Gold, Vista SP1, Server 2008

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.