CVE-2010-0806

Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, aka "Uninitialized Memory Corruption Vulnerability."
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
microsoftwindows_2003_server
*
microsoftwindows_server_2003
*
microsoftwindows_xp
*
microsoftwindows_xp
*
microsoftwindows_xp
-
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
-
microsoftwindows_server_2008
-
microsoftwindows_vista
*
microsoftwindows_vista
*
microsoftwindows_vista
*
microsoftwindows_vista
*
microsoftwindows_2000
*
microsoftwindows_2003_server
*
microsoftwindows_2003_server
*
microsoftwindows_server_2003
*
microsoftwindows_xp
*
microsoftwindows_xp
*
microsoftwindows_xp
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration