Lucene search
SAINT CorporationSAINT:A0CC97040A16C4712BDE1B29A77630CDHistoryNov 16, 2010 - 12:00 a.m.
Internet Explorer CSS clip attribute memory corruption
2010-11-1600:00:00
SAINT Corporation
www.saintcorporation.com
25
EPSS
0.97
Percentile
99.8%
Added: 11/16/2010
CVE: CVE-2010-3962
BID: 44536
OSVDB: 68987
Background
Cascading Style Sheets (CSS) is a simple mechanism for adding style to web documents.
Problem
A memory corruption vulnerability allows command execution when a user loads a web page containing a CSS clip attribute with a specific position, causing an invalid flag reference.
Resolution
Apply a patch when available. See Microsoft Security Advisory 2458511 for patch information.
References
<http://secunia.com/advisories/42091>
Limitations
Exploit works on Internet Explorer 6 on Windows XP SP3 with security update KB2360131, and requires a user to open the exploit page in Internet Explorer.
Platforms
Windows XP
Related
seebug
seebug
Internet Explorer 6, 7, 8 Memory Corruption 0day Exploit
2010-11-05 00:00:00
prion
prion
Memory corruption
2010-11-05 17:00:00
cvelist
cvelist
CVE-2010-3962
2010-11-05 16:28:00
packetstorm
packetstorm
Internet Explorer CSS SetUserClip Memory Corruption
2010-12-14 00:00:00
Microsoft Internet Explorer 6 / 7 / 8 Memory Corruption
2010-11-05 00:00:00
Internet Explorer CSS Tags Memory Corruption
2010-11-05 00:00:00
saint
saint
Internet Explorer CSS clip attribute memory corruption
2010-11-16 00:00:00
Internet Explorer CSS clip attribute memory corruption
2010-11-16 00:00:00
Internet Explorer CSS clip attribute memory corruption
2010-11-16 00:00:00
exploitdb
exploitdb
Microsoft Internet Explorer - Memory Corruption
2010-11-04 00:00:00
Microsoft Internet Explorer - CSS SetUserClip Memory Corruption (MS10-090) (Metasploit)
2011-01-20 00:00:00
Microsoft Internet Explorer 6/7/8 - Memory Corruption
2010-11-04 00:00:00
canvas
canvas
Immunity Canvas: IE_SETUSERCLIP
2010-11-05 17:00:00
securityvulns
securityvulns
cve
cve
CVE-2010-3962
2010-11-05 17:00:02
checkpoint_advisories
checkpoint_advisories
thn
thn
Top 5 Internet Security Threats for Businesses in 2023
2010-12-23 23:51:00
nvd
nvd
CVE-2010-3962
2010-11-05 17:00:02
metasploit
metasploit
MS10-090 Microsoft Internet Explorer CSS SetUserClip Memory Corruption
2010-12-14 18:41:20
cert
cert
Microsoft Internet Explorer invalid flag reference vulnerability
2010-11-03 00:00:00
exploitpack
exploitpack
Microsoft Internet Explorer 678 - Memory Corruption
2010-11-04 00:00:00
zdt
zdt
Internet Explorer 6, 7, 8 Memory Corruption 0day Exploit
2010-11-05 00:00:00
threatpost
threatpost
New Remotely Exploitable Bug Found in Internet Explorer
2010-12-10 14:22:34
nessus
nessus
MS10-090: Cumulative Security Update for Internet Explorer (2416400)
2010-12-15 00:00:00
mskb
mskb
MS10-090: Cumulative security update for Internet Explorer
2014-06-21 14:33:28
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (2416400)
2010-12-15 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (2416400)
2010-12-15 00:00:00