Lucene search
RootSSV:18997HistoryJan 26, 2010 - 12:00 a.m.
Microsoft IE远程内存破坏漏洞(MS10-002)
2010-01-2600:00:00
Root
www.seebug.org
31
EPSS
0.938
Percentile
99.1%
BUGTRAQ ID: 37893
CVE ID: CVE-2010-0247
Internet Explorer是Windows操作系统中默认捆绑的web浏览器。
Internet Explorer访问尚未正确初始化或已被删除的对象的方式中存在一个远程执行代码漏洞。攻击者可以通过构建特制的网页来利用该漏洞,当用户查看网页时,该漏洞可能允许远程执行代码。
Microsoft Internet Explorer 6.0 SP1
Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 5.0.1 SP4
临时解决方法:
- 将Internet Explorer配置为在Internet和本地Intranet安全区域中运行ActiveX控件和活动脚本之前进行提示。
- 将Internet 和本地Intranet安全区域设置设为“高”,以便在这些区域中运行ActiveX控件和活动脚本之前进行提示。
- 对Internet Explorer 6或Internet Explorer 7启用DEP。
厂商补丁:
Microsoft
Microsoft已经为此发布了一个安全公告(MS10-002)以及相应补丁:
MS10-002:Cumulative Security Update for Internet Explorer (978207)
链接:http://www.microsoft.com/technet/security/bulletin/ms10-002.mspx?pf=true
Related
cvelist
cvelist
CVE-2010-0247
2010-01-22 21:20:00
nvd
nvd
CVE-2010-0247
2010-01-22 22:00:00
cve
cve
CVE-2010-0247
2010-01-22 22:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
FortiGuard Advisory: Microsoft Internet Explorer Remote Memory Corruption Vulnerability
2010-01-23 00:00:00
Microsoft Security Bulletin MS10-002 - Critical Cumulative Security Update for Internet Explorer (978207)
2010-01-22 00:00:00
Microsoft Internet Explorer Multiple security vulnerabilities
2010-01-23 00:00:00
prion
prion
Memory corruption
2010-01-22 22:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (978207)
2010-01-22 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (978207)
2010-01-22 00:00:00
mskb
mskb
MS10-002: Cumulative security update for Internet Explorer
2014-06-23 07:27:25
nessus
nessus
MS10-002: Cumulative Security Update for Internet Explorer (978207)
2009-01-21 00:00:00