CVE-2010-3962

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 05-11-2010 06:00

Last modified: - 28-02-2022 08:15

Total changes: - 2

Description

Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code via vectors related to Cascading Style Sheets (CSS) token sequences and the clip attribute, aka an "invalid flag reference" issue or "Uninitialized Memory Corruption Vulnerability," as exploited in the wild in November 2010.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:C/I:C/A:C

Low

Attack complexity

Network

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Privileges required

Scope

User interaction

9.3

Base score

8.6

10.0

Exploitability score

Impact score

Verification logic

AND

vendor=microsoft AND product=internet_explorer AND version=6

vendor=microsoft AND product=windows_server_2003 AND version=- AND update=sp2

vendor=microsoft AND product=windows_xp AND version=- AND update=sp2 AND target_hardware=x64

vendor=microsoft AND product=windows_xp AND version=- AND update=sp3

AND

vendor=microsoft AND product=internet_explorer AND version=7

vendor=microsoft AND product=windows_server_2003 AND version=- AND update=sp2

vendor=microsoft AND product=windows_server_2008 AND version=- AND update=-

vendor=microsoft AND product=windows_server_2008 AND version=- AND update=sp2

vendor=microsoft AND product=windows_vista AND version=- AND update=sp1

vendor=microsoft AND product=windows_vista AND version=- AND update=sp2

vendor=microsoft AND product=windows_xp AND version=- AND update=sp2 AND software_edition=professional AND target_hardware=x64

vendor=microsoft AND product=windows_xp AND version=- AND update=sp3

AND

vendor=microsoft AND product=internet_explorer AND version=8

vendor=microsoft AND product=windows_7 AND version=-

vendor=microsoft AND product=windows_server_2003 AND version=- AND update=sp2

vendor=microsoft AND product=windows_server_2008 AND version=- AND update=-

vendor=microsoft AND product=windows_server_2008 AND version=- AND update=sp2

vendor=microsoft AND product=windows_server_2008 AND version=r2

vendor=microsoft AND product=windows_vista AND version=- AND update=sp1

vendor=microsoft AND product=windows_vista AND version=- AND update=sp2

vendor=microsoft AND product=windows_xp AND version=- AND update=sp2 AND software_edition=professional AND target_hardware=x64

vendor=microsoft AND product=windows_xp AND version=- AND update=sp3

Reference

http://www.symantec.com/connect/blogs/new-ie-0-day-used-targeted-attacks
http://blogs.technet.com/b/msrc/archive/2010/11/02/microsoft-releases-security-advisory-2458511.aspx
http://www.microsoft.com/technet/security/advisory/2458511.mspx
1024676-Broken Link, Third Party Advisory, VDB Entry
VU#899748-Third Party Advisory, US Government Resource
ADV-2010-2880-Broken Link, Vendor Advisory
42091-Broken Link, Vendor Advisory
44536-Broken Link, Third Party Advisory, VDB Entry
TA10-348A-Third Party Advisory, US Government Resource
15418-Third Party Advisory, VDB Entry
15421-Third Party Advisory, VDB Entry
ms-ie-flag-code-execution(62962)-Third Party Advisory, VDB Entry
oval:org.mitre.oval:def:12279-Tool Signature
MS10-090-Patch, Vendor Advisory

Keywords

CVE-2010-3962

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2010-3962

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures