Lucene search
MicrosoftCVE-2010-3342HistoryDec 16, 2010 - 7:33 p.m.
CVE-2010-3342
2010-12-1619:33:02
CWE-200
microsoft
web.nvd.nist.gov
30
microsoft
internet explorer
cve-2010-3342
cross-domain information disclosure vulnerability
security vulnerability
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.01
Percentile
83.3%
Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of cached content as HTML, which allows remote attackers to access content from a different (1) domain or (2) zone via unspecified script code, aka “Cross-Domain Information Disclosure Vulnerability,” a different vulnerability than CVE-2010-3348.
Affected configurations
Node
microsoftinternet_explorerMatch6
microsoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch7
microsoftwindows_vistaMatch-sp1
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch8
microsoftwindows_7Match-
ORmicrosoftwindows_vistaMatch-sp1
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_explorer | 6 | cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:* |
| microsoft | windows_xp | - | cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:* |
| microsoft | windows_xp | - | cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:* |
| microsoft | internet_explorer | 7 | cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:* |
| microsoft | windows_vista | - | cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:*:*:*:* |
| microsoft | windows_vista | - | cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:* |
| microsoft | internet_explorer | 8 | cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:* |
| microsoft | windows_7 | - | cpe:2.3:o:microsoft:windows_7:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2010-3342
2010-12-16 19:00:00
CVE-2010-3348
2010-12-16 19:00:00
cve
cve
CVE-2010-3348
2010-12-16 19:33:02
prion
prion
Information disclosure
2010-12-16 19:33:00
Information disclosure
2010-12-16 19:33:00
nvd
nvd
CVE-2010-3342
2010-12-16 19:33:02
CVE-2010-3348
2010-12-16 19:33:02
symantec
symantec
jvn
jvn
JVN#30273074: Internet Explorer vulnerable to cross-site scripting
2010-12-15 00:00:00
JVN#21120853: Internet Explorer vulnerable to cross-site scripting
2010-12-15 00:00:00
JVN#62275332: Internet Explorer vulnerable to cross-site scripting
2010-12-15 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (2416400)
2010-12-15 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (2416400)
2010-12-15 00:00:00
securityvulns
securityvulns
nessus
nessus
MS10-090: Cumulative Security Update for Internet Explorer (2416400)
2010-12-15 00:00:00
mskb
mskb
MS10-090: Cumulative security update for Internet Explorer
2014-06-21 14:33:28
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.01
Percentile
83.3%
Related for CVE-2010-3342