CVE-2010-0249

Опубликовано: 15 янв. 2010

Источник: nvd

CVSS3: 8.8

CVSS2: 9.3

EPSS Критический

Описание

Use-after-free vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 on Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object, related to incorrectly initialized memory and improper handling of objects in memory, as exploited in the wild in December 2009 and January 2010 during Operation Aurora, aka "HTML Object Memory Corruption Vulnerability."

Комментарий

Per: http://cwe.mitre.org/data/definitions/416.htmlhttp://cwe.mitre.org/data/definitions/416.html

CWE-416: Use After Free

Ссылки

http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx
Broken Link
Vendor Advisory
http://news.cnet.com/8301-27080_3-10435232-245.html
Broken Link
http://osvdb.org/61697
Broken Link
http://securitytracker.com/id?1023462
Broken Link
Third Party Advisory
VDB Entry
http://support.microsoft.com/kb/979352
Patch
Vendor Advisory
http://www.exploit-db.com/exploits/11167
Exploit
Third Party Advisory
VDB Entry
http://www.kb.cert.org/vuls/id/492515
Third Party Advisory
US Government Resource
http://www.microsoft.com/technet/security/advisory/979352.mspx
Broken Link
Patch
Vendor Advisory
http://www.securityfocus.com/bid/37815
Broken Link
Exploit
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA10-055A.html
Broken Link
Third Party Advisory
US Government Resource
http://www.vupen.com/english/advisories/2010/0135
Broken Link
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/55642
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6835
Broken Link
http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx
Broken Link
Vendor Advisory
http://news.cnet.com/8301-27080_3-10435232-245.html
Broken Link
http://osvdb.org/61697
Broken Link
http://securitytracker.com/id?1023462
Broken Link
Third Party Advisory
VDB Entry
http://support.microsoft.com/kb/979352
Patch
Vendor Advisory
http://www.exploit-db.com/exploits/11167
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:6:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:a:microsoft:internet_explorer:6:-:*:*:*:*:*:*

Одно из

cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:itanium:*

cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:x64:*

cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*

cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*

Конфигурация 3

Одновременно

cpe:2.3:a:microsoft:internet_explorer:7.0:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:itanium:*

cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:x64:*

cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_vista:-:*:*:*:-:*:x64:*

cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:-:*:x64:*

cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:-:*:x64:*

cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*

cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*

Конфигурация 4

Одновременно

cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:microsoft:windows_7:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:x64:*

cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:itanium:*

cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:x64:*

cpe:2.3:o:microsoft:windows_vista:-:*:*:*:-:*:x64:*

cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:-:*:x64:*

cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:-:*:x64:*

cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*

cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.90904

Критический

8.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-416

Связанные уязвимости

GHSA-x2mp-6fmq-52qw

CVSS3: 8.8

github

почти 4 года назад

EPSS

Процентиль: 100%

0.90904

Критический

8.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-416