← volver
CVE-2010-0492

CVE-2010-0492

CVSS 8.1 HIGHEPSS 27.5%CWE-94
Vexday Risk Score
26Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8.1EPSS 27.5%KEV nãoPoC Nuclei Metasploit Patch referenciado
Ciclo de vida
31 mar 2010Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and destruction of markup, leading to memory corruption, aka "HTML Object Memory Corruption Vulnerability."
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018http://securitytracker.com/id?1023773https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7722http://www.securityfocus.com/archive/1/510506/100/0/threadedhttp://www.securityfocus.com/bid/39030http://www.us-cert.gov/cas/techalerts/TA10-068A.htmlhttp://www.us-cert.gov/cas/techalerts/TA10-089A.htmlhttp://www.vupen.com/english/advisories/2010/0744http://www.zerodayinitiative.com/advisories/ZDI-10-033