Lucene search

[email protected]CVE-2010-2118

HistoryJun 01, 2010 - 8:30 p.m.

CVE-2010-2118

2010-06-0120:30:02

CWE-399

[email protected]

web.nvd.nist.gov

microsoft

internet explorer

dos

javascript

infinite loop

cve-2010-2118

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.6%

JSON

Microsoft Internet Explorer 6.0.2900.2180 and 8.0.7600.16385 allows remote attackers to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid news:// URIs.

Affected configurations

NVD

Node

microsoftieMatch8.0.7600.16385

microsoftinternet_explorerMatch6.0.2900.2180

CPENameOperatorVersion
microsoft:iemicrosoft ieeq8.0.7600.16385
microsoft:internet_explorermicrosoft internet explorereq6.0.2900.2180

CPE	Name	Operator	Version
microsoft:ie	microsoft ie	eq	8.0.7600.16385
microsoft:internet_explorer	microsoft internet explorer	eq	6.0.2900.2180

References

websecurity.com.ua/4238/

www.securityfocus.com/archive/1/511509/100/0/threaded

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.6%

JSON

Related for CVE-2010-2118

openvas2 cvelist1 nvd1 prion1