CVE-2010-3326

Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability."
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
OR cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:*:sp2:itanium:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:*:*:*:*:*

History

21 Nov 2024, 01:18

Type Values Removed Values Added
References () http://support.avaya.com/css/P8/documents/100113324 - () http://support.avaya.com/css/P8/documents/100113324 -
References () http://www.us-cert.gov/cas/techalerts/TA10-285A.html - US Government Resource () http://www.us-cert.gov/cas/techalerts/TA10-285A.html - US Government Resource
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-071 - () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-071 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7207 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7207 -

Information

Published : 2010-10-13 19:00

Updated : 2024-11-21 01:18


NVD link : CVE-2010-3326

Mitre link : CVE-2010-3326

CVE.ORG link : CVE-2010-3326


JSON object : View

Products Affected

microsoft

  • windows_server_2003
  • internet_explorer
  • windows_xp
  • windows_2003_server
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')