MS Internet Explorer Remote Code Execution Vulnerability (981374) Network Vulnerability

Summary

The host is installed with Internet Explorer and is prone to Remote Code Execution Vulnerability. This NVT has been replaced by NVT secpod_ms10-018.nasl (OID:1.3.6.1.4.1.25623.1.0.902155).

Impact

Successful exploitation will allow remote attackers to execute arbitrary code. Impact Level: System/Application

Solution

Apply the updates. For more information refer, http://technet.microsoft.com/en-us/security/bulletin/MS10-018

Insight

The flaw exists due to an invalid pointer reference being made within Internet Explorer. In specially-crafted attack, attempting to access a freed object, it can be caused to execute arbitrary code.

Affected

Microsoft Internet Explorer version 6.x, 7.x

References

http://securitytracker.com/alerts/2010/Mar/1023699.html
http://www.microsoft.com/technet/security/advisory/981374.mspx
http://www.trustedsource.org/blog/388/Targeted-Internet-Explorer-0day-Attack-Announced-CVE-2010-0806

Updated on 2017-03-28

Severity

Classification

CVE CVE-2010-0806

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Unspecified Vulnerabilities - Mac OS X
Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Windows)
Adobe AIR Multiple Vulnerabilities-01 Jun14 (Mac OS X)
Adobe Acrobat Multiple Vulnerabilities - 01 Jan14 (Mac OS X)
Adobe Air Multiple Vulnerabilities -01 May 13 (Windows)

Take action and discover your vulnerabilities