|
|
CVE Reference: CVE-2010-0806 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2010-0806 |
|
|
Description: Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, aka "Uninitialized Memory Corruption Vulnerability." |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/56772 SAID Secunia Advisory: SA38860 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8446 OSVDB 62810 MS http://www.microsoft.com/technet/security/Bulletin/MS10-018.mspx CONFIRM http://www.microsoft.com/technet/security/advisory/981374.mspx http://blogs.technet.com/msrc/archive/2010/03/09/security-advisory-981374-released.aspx CERT-VN 744549 CERT http://www.us-cert.gov/cas/techalerts/TA10-089A.html http://www.us-cert.gov/cas/techalerts/TA10-068A.html BID 38615 |
|
| Return to the previous page. |
