CVE-2010-3343

Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML Object Memory Corruption Vulnerability."
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
OR cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*
cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*

History

28 Feb 2022, 19:20

Type Values Removed Values Added
References (MS) https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-090 - (MS) https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-090 - Patch, Vendor Advisory
References (OVAL) https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12372 - (OVAL) https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12372 - Tool Signature
References (CERT) http://www.us-cert.gov/cas/techalerts/TA10-348A.html - US Government Resource (CERT) http://www.us-cert.gov/cas/techalerts/TA10-348A.html - Third Party Advisory, US Government Resource
References (SECTRACK) http://www.securitytracker.com/id?1024872 - (SECTRACK) http://www.securitytracker.com/id?1024872 - Broken Link, Third Party Advisory, VDB Entry
CWE CWE-94 CWE-908
CPE cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:*:sp2:itanium:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*
cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*

23 Jul 2021, 12:16

Type Values Removed Values Added
CPE cpe:2.3:a:microsoft:ie:6:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*

Information

Published : 2010-12-16 19:33

Updated : 2023-12-10 11:03


NVD link : CVE-2010-3343

Mitre link : CVE-2010-3343

CVE.ORG link : CVE-2010-3343


JSON object : View

Products Affected

microsoft

  • windows_server_2003
  • windows_xp
  • internet_explorer
CWE
CWE-908

Use of Uninitialized Resource