{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T19:05:17.597","vulnerabilities":[{"cve":{"id":"CVE-2011-1347","sourceIdentifier":"cve@mitre.org","published":"2011-03-10T20:55:01.343","lastModified":"2025-04-11T00:51:21.963","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to bypass Protected Mode and create arbitrary files by leveraging access to a Low integrity process, as demonstrated by Stephen Fewer as the third of three chained vulnerabilities during a Pwn2Own competition at CanSecWest 2011."},{"lang":"es","value":"Vulnerabilidad sin especificar en Microsoft Internet Explorer 8 en Windows 7 permite a atacantes remotos evitar el modo protegido (\"Protected Mode\") y crear archivos arbitrarios utilizando el acceso a un proceso de baja integridad, como ha demostrado Stephen Fewer en una de las tres vulnerabilidades encadenadas durante el concurso Pwn2Own y CanSecWest 2011."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:C/A:C","baseScore":8.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":9.2,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*","matchCriteriaId":"A52E757F-9B41-43B4-9D67-3FEDACA71283"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*","matchCriteriaId":"D56B932B-9593-44E2-B610-E4EB2143EB21"}]}]}],"references":[{"url":"http://dvlabs.tippingpoint.com/blog/2011/02/02/pwn2own-2011","source":"cve@mitre.org"},{"url":"http://twitter.com/aaronportnoy/statuses/45642180118855680","source":"cve@mitre.org"},{"url":"http://twitter.com/msftsecresponse/statuses/45646985998516224","source":"cve@mitre.org"},{"url":"http://www.computerworld.com/s/article/9214002/Safari_IE_hacked_first_at_Pwn2Own","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/46821","source":"cve@mitre.org"},{"url":"http://www.zdnet.com/blog/security/pwn2own-2011-ie8-on-windows-7-hijacked-with-3-vulnerabilities/8367","source":"cve@mitre.org"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-057","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/66064","source":"cve@mitre.org"},{"url":"https://threatpost.com/en_us/blogs/pwn2own-winner-stephen-fewer-031011","source":"cve@mitre.org"},{"url":"http://dvlabs.tippingpoint.com/blog/2011/02/02/pwn2own-2011","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://twitter.com/aaronportnoy/statuses/45642180118855680","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://twitter.com/msftsecresponse/statuses/45646985998516224","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.computerworld.com/s/article/9214002/Safari_IE_hacked_first_at_Pwn2Own","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/46821","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.zdnet.com/blog/security/pwn2own-2011-ie8-on-windows-7-hijacked-with-3-vulnerabilities/8367","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-057","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/66064","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://threatpost.com/en_us/blogs/pwn2own-winner-stephen-fewer-031011","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}