Lucene search

[email protected]CVE-2010-1261

HistoryJun 08, 2010 - 10:30 p.m.

CVE-2010-1261

2010-06-0822:30:00

CWE-94

[email protected]

web.nvd.nist.gov

cve-2010-1261

ie8

developer toolbar

microsoft internet explorer

sp1

sp2

sp3

user-assisted remote attackers

arbitrary code

memory corruption

uninitialized memory corruption vulnerability

nvd

7.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.949 High

EPSS

Percentile

99.3%

JSON

The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka “Uninitialized Memory Corruption Vulnerability.”

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq8

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	8

References

osvdb.org/65214

support.avaya.com/css/P8/documents/100089747

www.us-cert.gov/cas/techalerts/TA10-159B.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-035

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7124

7.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.949 High

EPSS

Percentile

99.3%

JSON

Related for CVE-2010-1261

symantec1 prion1 seebug1 mskb1 nessus1 openvas2 securityvulns2