CVE-2010-0267
- EPSS 34.41%
- Veröffentlicht 31.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:49
Microsoft Internet Explorer 6, 6 SP1, and 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corrupti...
CVE-2010-0488
- EPSS 29.23%
- Veröffentlicht 31.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:16
Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified "encoding strings," which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site, aka "Post Encoding ...
CVE-2010-0489
- EPSS 23.73%
- Veröffentlicht 31.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:16
Race condition in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted HTML document that triggers memory corruption, aka "Race Condition Memory Corruption Vulnerability."
CVE-2010-0490
- EPSS 29.32%
- Veröffentlicht 31.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:16
Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corru...
CVE-2010-0491
- EPSS 29.28%
- Veröffentlicht 31.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:16
Use-after-free vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 6 SP1 allows remote attackers to execute arbitrary code by changing unspecified properties of an HTML object that has an onreadystatechange event handler, aka "HTML Object M...
CVE-2010-0492
- EPSS 27.52%
- Veröffentlicht 31.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:16
Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and destruction of markup, leading to memory corruption, ...
CVE-2010-0494
- EPSS 22.89%
- Veröffentlicht 31.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:17
Cross-domain vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted HTML document in a situation where the cl...
CVE-2010-0807
- EPSS 29.28%
- Veröffentlicht 31.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:52
Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."
CVE-2010-0483
- EPSS 86.37%
- Veröffentlicht 03.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:15
vbscript.dll in VBScript 5.1, 5.6, 5.7, and 5.8 in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, allows user-assisted remote attackers to execute arbitrary code by referencing a (1) local pathname, (...
CVE-2010-0917
- EPSS 24.32%
- Veröffentlicht 03.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:17:07
Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, might allow user-assisted remote attackers to execute arbitrary code via a long string in the fourth argument ...