Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-0248
HistoryJan 22, 2010 - 10:00 p.m.

CVE-2010-0248

2010-01-2222:00:00
CWE-94
[email protected]
web.nvd.nist.gov
115
microsoft
internet explorer
cve-2010-0248
memory corruption
remote code execution
security vulnerability

8.8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.9%

JSON

Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka β€œHTML Object Memory Corruption Vulnerability.”

Affected configurations

NVD
Node
microsoftinternet_explorerMatch8
OR
microsoftinternet_explorerMatch8.0.6001
AND
microsoftwindows_7Match-
OR
microsoftwindows_server_2003sp2
OR
microsoftwindows_server_2008x32
OR
microsoftwindows_server_2008x64
OR
microsoftwindows_server_2008r2itanium
OR
microsoftwindows_server_2008r2x64
OR
microsoftwindows_server_2008sp2x32
OR
microsoftwindows_server_2008sp2x64
OR
microsoftwindows_vista
OR
microsoftwindows_vistax64
OR
microsoftwindows_vistasp1
OR
microsoftwindows_vistasp2
OR
microsoftwindows_xpsp2
OR
microsoftwindows_xpsp3
OR
microsoftwindows_xpMatch-sp2x64
Node
microsoftinternet_explorerMatch7
OR
microsoftinternet_explorerMatch7.0
OR
microsoftinternet_explorerMatch7.0.5730unknowngold
OR
microsoftinternet_explorerMatch7.0.5730.11
OR
microsoftinternet_explorerMatch7.00.5730.1100
OR
microsoftinternet_explorerMatch7.00.6000.16386
OR
microsoftinternet_explorerMatch7.00.6000.16441
AND
microsoftwindows_server_2003sp2
OR
microsoftwindows_server_2008x32
OR
microsoftwindows_server_2008x64
OR
microsoftwindows_server_2008sp2x32
OR
microsoftwindows_server_2008sp2x64
OR
microsoftwindows_vista
OR
microsoftwindows_vistax64
OR
microsoftwindows_vistasp1
OR
microsoftwindows_vistasp2
OR
microsoftwindows_xpsp2
OR
microsoftwindows_xpsp3
OR
microsoftwindows_xpMatch-sp2x64
Node
microsoftinternet_explorerMatch6sp1
AND
microsoftwindows_2000sp4
Node
microsoftinternet_explorerMatch6
OR
microsoftinternet_explorerMatch6.0
OR
microsoftinternet_explorerMatch6.00.2462.0000
OR
microsoftinternet_explorerMatch6.00.2479.0006
OR
microsoftinternet_explorerMatch6.0.2600
OR
microsoftinternet_explorerMatch6.00.2600.0000
OR
microsoftinternet_explorerMatch6.0.2800
OR
microsoftinternet_explorerMatch6.0.2800.1106
OR
microsoftinternet_explorerMatch6.00.2800.1106
OR
microsoftinternet_explorerMatch6.0.2900
OR
microsoftinternet_explorerMatch6.0.2900.2180
OR
microsoftinternet_explorerMatch6.00.2900.2180
OR
microsoftinternet_explorerMatch6.00.3663.0000
OR
microsoftinternet_explorerMatch6.00.3718.0000
OR
microsoftinternet_explorerMatch6.00.3790.0000
OR
microsoftinternet_explorerMatch6.00.3790.1830
OR
microsoftinternet_explorerMatch6.00.3790.3959
AND
microsoftwindows_server_2003sp2
OR
microsoftwindows_xpsp2
OR
microsoftwindows_xpsp3
OR
microsoftwindows_xpMatch-sp2x64

Related

checkpoint_advisories 3
cvelist 1
packetstorm 1
seebug 2
prion 1
nvd 1
zdi 1
securityvulns 3
threatpost 1
openvas 2
mskb 1
nessus 1
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer HTML Object Use After Free - Ver2 (CVE-2010-0248)
2014-02-03 00:00:00
Internet Explorer Event Operations HTML Object Memory Corruption (MS10-002) - Ver2 (CVE-2010-0248)
2014-01-07 00:00:00
Internet Explorer Event Operations HTML Object Memory Corruption (MS10-002; CVE-2010-0248)
2010-01-21 00:00:00
cvelist
cvelist
CVE-2010-0248
2010-01-22 21:20:00
packetstorm
packetstorm
MS10-002 Internet Explorer Object Memory Use-After-Free
2012-03-22 00:00:00
seebug
seebug
Internet Explorer Object Memory Use-After-Free(MS10-002)
2012-03-23 00:00:00
Microsoft IEε…‹ιš†DOMε―Ήθ±‘ε†…ε­˜η ΄εζΌζ΄žοΌˆMS10-002οΌ‰
2010-01-22 00:00:00
prion
prion
Memory corruption
2010-01-22 22:00:00
nvd
nvd
CVE-2010-0248
2010-01-22 22:00:00
zdi
zdi
Microsoft Internet Explorer item Object Memory Corruption Remote Code Execution Vulnerability
2010-01-21 00:00:00
securityvulns
securityvulns
ZDI-10-014: Microsoft Internet Explorer item Object Memory Corruption Remote Code Execution Vulnerability
2010-01-22 00:00:00
Microsoft Internet Explorer Multiple security vulnerabilities
2010-01-23 00:00:00
Microsoft Security Bulletin MS10-002 - Critical Cumulative Security Update for Internet Explorer (978207)
2010-01-22 00:00:00
threatpost
threatpost
Microsoft Knew of IE Zero-Day Flaw Since September
2010-01-21 20:40:23
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (978207)
2010-01-22 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (978207)
2010-01-22 00:00:00
mskb
mskb
MS10-002: Cumulative security update for Internet Explorer
2014-06-23 07:27:25
nessus
nessus
MS10-002: Cumulative Security Update for Internet Explorer (978207)
2009-01-21 00:00:00

8.8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.9%

JSON
Related for CVE-2010-0248
checkpoint_advisories3cvelist1packetstorm1seebug2prion1nvd1zdi1securityvulns3threatpost1openvas2mskb1nessus1