Lucene search

MicrosoftCVE-2010-0247

HistoryJan 22, 2010 - 10:00 p.m.

CVE-2010-0247

2010-01-2222:00:00

CWE-94

microsoft

web.nvd.nist.gov

cve-2010-0247

microsoft

internet explorer

memory corruption

vulnerability

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.8

Confidence

High

EPSS

0.938

Percentile

99.1%

JSON

Microsoft Internet Explorer 5.01 SP4, 6, and 6 SP1 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka “Uninitialized Memory Corruption Vulnerability.”

Affected configurations

Nvd

Node

microsoftinternet_explorerMatch6sp1

AND

microsoftwindows_2000sp4

Node

microsoftinternet_explorerMatch6

microsoftinternet_explorerMatch6.0

microsoftinternet_explorerMatch6.00.2462.0000

microsoftinternet_explorerMatch6.00.2479.0006

microsoftinternet_explorerMatch6.0.2600

microsoftinternet_explorerMatch6.00.2600.0000

microsoftinternet_explorerMatch6.0.2800

microsoftinternet_explorerMatch6.0.2800.1106

microsoftinternet_explorerMatch6.00.2800.1106

microsoftinternet_explorerMatch6.0.2900

microsoftinternet_explorerMatch6.0.2900.2180

microsoftinternet_explorerMatch6.00.2900.2180

microsoftinternet_explorerMatch6.00.3663.0000

microsoftinternet_explorerMatch6.00.3718.0000

microsoftinternet_explorerMatch6.00.3790.0000

microsoftinternet_explorerMatch6.00.3790.1830

microsoftinternet_explorerMatch6.00.3790.3959

AND

microsoftwindows_server_2003sp2

microsoftwindows_xpsp2

microsoftwindows_xpsp3

microsoftwindows_xpMatch-sp2x64

Node

microsoftinternet_explorerMatch5.01sp4

AND

microsoftwindows_2000sp4

VendorProductVersionCPE
microsoftinternet_explorer6cpe:2.3:a:microsoft:internet_explorer:6:sp1:*:*:*:*:*:*
microsoftwindows_2000*cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
microsoftinternet_explorer6cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
microsoftinternet_explorer6.0cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
microsoftinternet_explorer6.00.2462.0000cpe:2.3:a:microsoft:internet_explorer:6.00.2462.0000:*:*:*:*:*:*:*
microsoftinternet_explorer6.00.2479.0006cpe:2.3:a:microsoft:internet_explorer:6.00.2479.0006:*:*:*:*:*:*:*
microsoftinternet_explorer6.0.2600cpe:2.3:a:microsoft:internet_explorer:6.0.2600:*:*:*:*:*:*:*
microsoftinternet_explorer6.00.2600.0000cpe:2.3:a:microsoft:internet_explorer:6.00.2600.0000:*:*:*:*:*:*:*
microsoftinternet_explorer6.0.2800cpe:2.3:a:microsoft:internet_explorer:6.0.2800:*:*:*:*:*:*:*
microsoftinternet_explorer6.0.2800.1106cpe:2.3:a:microsoft:internet_explorer:6.0.2800.1106:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	internet_explorer	6	cpe:2.3:a:microsoft:internet_explorer:6:sp1::::::
microsoft	windows_2000	*	cpe:2.3:o:microsoft:windows_2000::sp4::::::*
microsoft	internet_explorer	6	cpe:2.3:a:microsoft:internet_explorer:6:::::::*
microsoft	internet_explorer	6.0	cpe:2.3:a:microsoft:internet_explorer:6.0:::::::*
microsoft	internet_explorer	6.00.2462.0000	cpe:2.3:a:microsoft:internet_explorer:6.00.2462.0000:::::::*
microsoft	internet_explorer	6.00.2479.0006	cpe:2.3:a:microsoft:internet_explorer:6.00.2479.0006:::::::*
microsoft	internet_explorer	6.0.2600	cpe:2.3:a:microsoft:internet_explorer:6.0.2600:::::::*
microsoft	internet_explorer	6.00.2600.0000	cpe:2.3:a:microsoft:internet_explorer:6.00.2600.0000:::::::*
microsoft	internet_explorer	6.0.2800	cpe:2.3:a:microsoft:internet_explorer:6.0.2800:::::::*
microsoft	internet_explorer	6.0.2800.1106	cpe:2.3:a:microsoft:internet_explorer:6.0.2800.1106:::::::*