← voltar
CVE-2010-0492

CVE-2010-0492

CVSS 8.1 HIGHEPSS 27.5%CWE-94
Vexday Risk Score
26Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 8.1EPSS 27.5%KEV nãoPoC Nuclei Metasploit Patch referenciado
Ciclo de vida
31 mar 2010Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and destruction of markup, leading to memory corruption, aka "HTML Object Memory Corruption Vulnerability."
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018http://securitytracker.com/id?1023773https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7722http://www.securityfocus.com/archive/1/510506/100/0/threadedhttp://www.securityfocus.com/bid/39030http://www.us-cert.gov/cas/techalerts/TA10-068A.htmlhttp://www.us-cert.gov/cas/techalerts/TA10-089A.htmlhttp://www.vupen.com/english/advisories/2010/0744http://www.zerodayinitiative.com/advisories/ZDI-10-033