What the Browser Vulnerability Leaves Open
The most severe browser vulnerabilities could
- Allow remote code execution if a user views a specially crafted web page using Internet Explorer.
- An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the logged-on user.
- Users whose accounts at the administrative level could be impacted more than users who have fewer user rights on the system.
What does the patch do?
The security update addresses the vulnerabilities by modifying the way that Internet Explorer handles content during copy and paste processes; how it handles objects in memory; and how it creates and initializes strings.