Lucene search

[email protected]CVE-2010-1127

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-1127

2022-10-0316:21:01

[email protected]

web.nvd.nist.gov

cve-2010-1127

microsoft internet explorer

vulnerability

denial of service

null pointer dereference

application crash

javascript code

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.142 Low

EPSS

Percentile

95.7%

JSON

Microsoft Internet Explorer 6 and 7 does not initialize certain data structures during execution of the createElement method, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted JavaScript code, as demonstrated by setting the (1) outerHTML or (2) value property of an object returned by createElement.

Affected configurations

NVD

Node

microsoftinternet_explorerMatch6.0

microsoftinternet_explorerMatch6.00.2462.0000

microsoftinternet_explorerMatch6.00.2479.0006

microsoftinternet_explorerMatch6.0.2600

microsoftinternet_explorerMatch6.00.2600.0000

microsoftinternet_explorerMatch6.0.2800

microsoftinternet_explorerMatch6.0.2800.1106

microsoftinternet_explorerMatch6.00.2800.1106

microsoftinternet_explorerMatch6.0.2900

microsoftinternet_explorerMatch6.0.2900.2180

microsoftinternet_explorerMatch6.00.2900.2180

microsoftinternet_explorerMatch6.00.3663.0000

microsoftinternet_explorerMatch6.00.3718.0000

microsoftinternet_explorerMatch6.00.3790.0000

microsoftinternet_explorerMatch6.00.3790.1830

microsoftinternet_explorerMatch6.00.3790.3959

microsoftinternet_explorerMatch7.0

microsoftinternet_explorerMatch7.0beta

microsoftinternet_explorerMatch7.0beta1

microsoftinternet_explorerMatch7.0beta2

microsoftinternet_explorerMatch7.0beta3

microsoftinternet_explorerMatch7.0.5730unknowngold

microsoftinternet_explorerMatch7.0.5730.11

microsoftinternet_explorerMatch7.00.5730.1100

microsoftinternet_explorerMatch7.00.6000.16386

microsoftinternet_explorerMatch7.00.6000.16441

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq6.0
microsoft:internet_explorermicrosoft internet explorereq6.00.2462.0000
microsoft:internet_explorermicrosoft internet explorereq6.00.2479.0006
microsoft:internet_explorermicrosoft internet explorereq6.0.2600
microsoft:internet_explorermicrosoft internet explorereq6.00.2600.0000
microsoft:internet_explorermicrosoft internet explorereq6.0.2800
microsoft:internet_explorermicrosoft internet explorereq6.0.2800.1106
microsoft:internet_explorermicrosoft internet explorereq6.00.2800.1106
microsoft:internet_explorermicrosoft internet explorereq6.0.2900
microsoft:internet_explorermicrosoft internet explorereq6.0.2900.2180

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	6.0
microsoft:internet_explorer	microsoft internet explorer	eq	6.00.2462.0000
microsoft:internet_explorer	microsoft internet explorer	eq	6.00.2479.0006
microsoft:internet_explorer	microsoft internet explorer	eq	6.0.2600
microsoft:internet_explorer	microsoft internet explorer	eq	6.00.2600.0000
microsoft:internet_explorer	microsoft internet explorer	eq	6.0.2800
microsoft:internet_explorer	microsoft internet explorer	eq	6.0.2800.1106
microsoft:internet_explorer	microsoft internet explorer	eq	6.00.2800.1106
microsoft:internet_explorer	microsoft internet explorer	eq	6.0.2900
microsoft:internet_explorer	microsoft internet explorer	eq	6.0.2900.2180

Rows per page:

1-10 of 221

References

archives.neohapsis.com/archives/bugtraq/2010-01/0237.html

archives.neohapsis.com/archives/bugtraq/2010-01/0278.html

securityreason.com/exploitalert/7731

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.142 Low

EPSS

Percentile

95.7%

JSON

Related for CVE-2010-1127

cvelist1 openvas2 nvd1 prion1