Vulnerability & Exploit Database

Back to search

MS13-009 Microsoft Internet Explorer SLayoutRun Use-After-Free

This module exploits a use-after-free vulnerability in Microsoft Internet Explorer where a CParaElement node is released but a reference is still kept in CDoc. This memory is reused when a CDoc relayout is performed.

Free Metasploit Download

Get your copy of the world's leading penetration testing tool

 Download Now

Module Name

exploit/windows/browser/ms13_009_ie_slayoutrun_uaf

Authors

  • Scott Bell <scott.bell [at] security-assessment.com>

References

Targets

  • Automatic
  • IE 8 on Windows XP SP3

Platforms

  • windows

Reliability

Development

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use exploit/windows/browser/ms13_009_ie_slayoutrun_uaf msf exploit(ms13_009_ie_slayoutrun_uaf) > show targets ...targets... msf exploit(ms13_009_ie_slayoutrun_uaf) > set TARGET <target-id> msf exploit(ms13_009_ie_slayoutrun_uaf) > show options ...show and set options... msf exploit(ms13_009_ie_slayoutrun_uaf) > exploit

Related Vulnerabilities