3 matches found
CVE-2010-0491
CVE-2010-0491 is the IE HTML Object Memory Corruption vulnerability (Use-after-free) affecting Internet Explorer 5.01 SP4, 6, and 6 SP1. Exploitation requires crafting a page with an onreadystatechange handler to trigger arbitrary code execution; Microsoft documented this as part of MS10-018 and ...
Internet Explorer onreadystatechange释放后使用漏洞(MS10-018)
BUGTRAQ ID: 39027 CVE ID: CVE-2010-0491 Internet Explorer是Windows操作系统中默认捆绑的web浏览器。 Internet Explorer在处理带onreadystatechange事件处理器的HTML对象时存在释放后使用错误。这个事件用于在某些HTML对象的状态发生变化时执行操作。具体来讲,当对象的某些属性发生变化时,会释放事件处理器功能对象,当仍保留了对其的引用。之后在访问对象时,会将这个无效的内存处理为对象指针,其中的一个成员用于执行间接的函数调用,这会导致执行任意代码。 Microsoft Internet...
MS10-018: Cumulative Security Update for Internet Explorer (980182)
The remote host is missing IE Security Update 980182. The remote version of IE is affected by several vulnerabilities that may allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid45378; scriptversion"1.29";...