9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.963 High
EPSS
Percentile
99.4%
Name | ms10_026 |
---|---|
CVE | CVE-2010-0480 Exploit Pack |
VENDOR: Microsoft | |
MSADV: MS10-026 | |
Repeatability: One Shot | |
MSRC: http://www.microsoft.com/technet/security/Bulletin/MS10-026.mspx | |
Note: |
This is a client-side exploit - so use it via clientd.
This module was tested on Windows XP SP3 / IE7
It uses the .NET DLL trick, effectively defeating DEP and ASLR.
CVS URL: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0480
Date public: 04/14/2010