9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.854 High
EPSS
Percentile
98.6%
Microsoft Internet Explorer 6, 6 SP1, and 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka βUninitialized Memory Corruption Vulnerability.β
securitytracker.com/id?1023773
www.securityfocus.com/bid/39023
www.us-cert.gov/cas/techalerts/TA10-068A.html
www.us-cert.gov/cas/techalerts/TA10-089A.html
www.vupen.com/english/advisories/2010/0744
docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8554