CVE-2010-1260

CVSS 7.5 HIGHEPSS 19.1%CWE-94

Vexday Risk Score

26Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 7.5EPSS 19.1%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado

Lifecycle

08 Jun 2010Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML Element Memory Corruption Vulnerability."

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://osvdb.org/65213 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-035 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6686 http://support.avaya.com/css/P8/documents/100089747 http://www.us-cert.gov/cas/techalerts/TA10-159B.html