Lucene search

PRIOn knowledge basePRION:CVE-2010-2556

HistoryAug 11, 2010 - 6:47 p.m.

Memory corruption

2010-08-1118:47:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.965 High

EPSS

Percentile

99.6%

JSON

Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka “Uninitialized Memory Corruption Vulnerability.”

CPENameOperatorVersion
internet_explorereq6
internet_explorereq7
internet_explorereq8

Name	Operator	Version
internet_explorer	eq	6
internet_explorer	eq	7
internet_explorer	eq	8

References

www.us-cert.gov/cas/techalerts/TA10-222A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-053

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11994

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.965 High

EPSS

Percentile

99.6%

JSON

Related for PRION:CVE-2010-2556