Lucene search
Peter Vreugdenhil (http://twitter.com/WTFuzz)ZDI-10-102HistoryJun 08, 2010 - 12:00 a.m.
Microsoft Internet Explorer Stylesheet Array Removal Remote Code Execution Vulnerability
2010-06-0800:00:00
Peter Vreugdenhil (http://twitter.com/WTFuzz)
www.zerodayinitiative.com
25
EPSS
0.927
Percentile
99.1%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required in that a target must visit a malicious page. The specific flaw exists within IEโs support for the CStyleSheet object. When a style sheet array is created it contains a reference to itโs root container. If the stylesheet was created as part of an element not in a markup the root container can be freed when that element is destroyed. When the application attempts to use the stylesheet after this, an invalid pointer is utilized. This can be leveraged by attackers to execute arbitrary code under the context of the user running the browser.
Related
seebug
seebug
cvelist
cvelist
CVE-2010-1262
2010-06-08 22:00:00
nvd
nvd
CVE-2010-1262
2010-06-08 22:30:01
prion
prion
Memory corruption
2010-06-08 22:30:00
cve
cve
CVE-2010-1262
2010-06-08 22:30:01
securityvulns
securityvulns
ZDI-10-102: Microsoft Internet Explorer Stylesheet Array Removal Remote Code Execution Vulnerability
2010-06-08 00:00:00
Microsoft Security Bulletin MS10-035 - Critical Cumulative Security Update for Internet Explorer (982381)
2010-06-08 00:00:00
Microsoft Internet Explorer multiple security vulnerabilities
2010-06-08 00:00:00
checkpoint_advisories
checkpoint_advisories
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (982381)
2010-06-09 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (982381)
2010-06-09 00:00:00
nessus
nessus
MS10-035: Cumulative Security Update for Internet Explorer (982381)
2010-06-09 00:00:00
mskb
mskb
MS10-035: Cumulative security update for Internet Explorer
2014-06-21 13:52:45