KLA10662
Multiple vulnerabilities in Microsoft Internet Explorer

Multiple serious vulnerabilities have been found in Internet Explorer. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges or obtain sensitive information.

Below is a complete list of vulnerabilities

1. Improper memory objects access at VBScript and JScript engines and other unknown vectors can be exploited remotely via a specially designed web content to execute arbitrary code;
2. Improper permissions validation can be exploited remotely via a specially designed web content;
3. Improperly information disclosure can be exploited remotely via a specially designed web content to obtain sensitive information;
4. Improper files interaction can be exploited via an unknown vectors to delete local files.

Technical details

Vulnerability (2) doesn’t itself allow arbitrary code execution but combined with another vulnerability could be exploited to run arbitrary code with elevated privileges.

Exploitation of vulnerability (3) could lead to disclosure of memory content.

(4) caused by accessing files with improper flag and can lead low privilege process to delete arbitrary files.

Internet Explorer versions from 7 through 11

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)