A remote user can cause arbitrary code to be executed on the target user's system. A remote user can obtain potentially sensitive information on the target system.A remote user can create specially crafted HTML that, when loaded by the target user, will trigger an object memory access error and execute arbitrary code on the target user's system