CVE-2011-1255

EXPLOITED

Internet Explorer 6-8 - Use-After-Free in Timed Interactive Multimedia Extensions

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2011-1255 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Ciph3r.

AI-analyzed exploit summary This exploit targets a memory corruption vulnerability in Internet Explorer's Timed Interactive Multimedia Extensions (HTML+TIME) to achieve remote code execution, bypassing DEP and ASLR on Windows 7 with IE 8.

Description

The Timed Interactive Multimedia Extensions (aka HTML+TIME) implementation in Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "Time Element Memory Corruption Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED
by Ciph3r · textremotewindows
https://www.exploit-db.com/exploits/20547

This exploit targets a memory corruption vulnerability in Internet Explorer's Timed Interactive Multimedia Extensions (HTML+TIME) to achieve remote code execution, bypassing DEP and ASLR on Windows 7 with IE 8.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Microsoft Internet Explorer 6-8
No auth needed
Prerequisites: Victim must visit a malicious webpage using a vulnerable version of Internet Explorer
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Broken Link vdb-entry x_refsource_osvdb
http://osvdb.org/72947
Patch, Vendor Advisory vendor-advisory x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-050

Scores

EPSS 0.5237
EPSS Percentile 98.0%

Details

VulnCheck KEV 2016-02-23
CWE
CWE-908
Status published
Products (3)
microsoft/internet_explorer 6
microsoft/internet_explorer 7
microsoft/internet_explorer 8
Published Jun 16, 2011
Tracked Since Feb 18, 2026