VYPR
High severity8.8CISA KEVNVD Advisory· Published Dec 30, 2012· Updated Jun 16, 2026

CVE-2012-4792

CVE-2012-4792

Description

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object, and exploited in the wild in December 2012.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*
    • (no CPE)range: 6.0 - 8.0

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.