Lucene search

[email protected]CVE-2010-1118

HistoryMar 25, 2010 - 9:00 p.m.

CVE-2010-1118

2010-03-2521:00:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2010-1118

internet explorer

microsoft windows 7

remote code execution

use-after-free issue

pwn2own

cansecwest 2010

nvd

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.151 Low

EPSS

Percentile

95.8%

JSON

Unspecified vulnerability in Internet Explorer 8 on Microsoft Windows 7 allows remote attackers to execute arbitrary code via unknown vectors, possibly related to a use-after-free issue, as demonstrated by Peter Vreugdenhil during a Pwn2Own competition at CanSecWest 2010.

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq8

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	8

References

dvlabs.tippingpoint.com/blog/2010/02/15/pwn2own-2010

news.cnet.com/8301-27080_3-20001126-245.html

twitter.com/thezdi/statuses/11003801960

vreugdenhilresearch.nl/Pwn2Own-2010-Windows7-InternetExplorer8.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/57197

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.151 Low

EPSS

Percentile

95.8%

JSON

Related for CVE-2010-1118

prion2 cvelist2 cve1