CVE-2011-1260

CVE Database · CVE-2011-1260

CVE-2011-1260

· N/AModified

CVSS v3.1

N/A

EPSS

60.85%

Published

Jun 16, 2011

Modified

Apr 28, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Internet Explorer - MSHTML!CObjectElement Use-After-Free (MS11-050) (Metasploit)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Internet Explorer 8 and 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "Layout Memory Corruption Vulnerability."

Weaknesses (CWE)

CWE-119

Affected Products (26)

microsoft · internet_explorervulnerable

microsoft · windows_2003_server

microsoft · windows_7

microsoft · windows_server_2003

microsoft · windows_server_2008

References (6)

http://securityreason.com/securityalert/8275

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-050

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12308

http://securityreason.com/securityalert/8275

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-050

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12308

KEV Catalog EPSS Scores Vendors All CVEs