Arbitrary File Creation Vulnerability in Microsoft Internet Explorer 8 on Windows 7

Arbitrary File Creation Vulnerability in Microsoft Internet Explorer 8 on Windows 7

CVE-2011-1347 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:C/A:C

Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to bypass Protected Mode and create arbitrary files by leveraging access to a Low integrity process, as demonstrated by Stephen Fewer as the third of three chained vulnerabilities during a Pwn2Own competition at CanSecWest 2011.

Learn more about our Web Application Penetration Testing UK.