CVE-2010-0807
published 2010-03-31CVE-2010-0807: Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted…
PriorityP351critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
29.28%
97.9th percentile
Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2010-3559 JDK unspecified vulnerability in Sound component
bugzilla·2010-10-13·CVSS 10.0
CVE-2010-3559 [CRITICAL] CVE-2010-3559 JDK unspecified vulnerability in Sound component
CVE-2010-3559 JDK unspecified vulnerability in Sound component
Update 22 of Oracle/Sun Java fixes an unspecified vulnerability in the Sound component (CVE-2010-3559). The CVSSv2 scored upstream is
cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P
Reference:
http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
Discussion:
This issue has been addressed in following products:
Extras for RHEL 4
Extras for Red Hat Enterprise Linux 5
Via RHSA-2010:0770 https://rhn.redhat.com/errata/RHSA-2010-0770.html
---
This issue has been addressed in following products:
Extras for RHEL 4
Extras for Red Hat Enterprise Linux 5
Via RHSA-2010:0807 https://rhn.redhat.com/errata/RHSA-2010-0807.html
---
This issue has been addressed in following products:
Extras for Red Hat Enterprise Linux
Bugzilla
CVE-2010-3550 JDK unspecified vulnerability in Java Web Start component
bugzilla·2010-10-13·CVSS 9.3
CVE-2010-3550 [CRITICAL] CVE-2010-3550 JDK unspecified vulnerability in Java Web Start component
CVE-2010-3550 JDK unspecified vulnerability in Java Web Start component
Update 22 of Oracle/Sun Java fixes an unspecified vulnerability in the Java Web Start component (CVE-2010-3550). The CVSSv2 scored upstream is
cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P
Reference:
http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
Discussion:
This issue has been addressed in following products:
Extras for RHEL 4
Extras for Red Hat Enterprise Linux 5
Via RHSA-2010:0770 https://rhn.redhat.com/errata/RHSA-2010-0770.html
---
This issue has been addressed in following products:
Extras for RHEL 4
Extras for Red Hat Enterprise Linux 5
Via RHSA-2010:0807 https://rhn.redhat.com/errata/RHSA-2010-0807.html
---
This issue has been addressed in following products:
Extras for Red Hat
Bugzilla
CVE-2010-3566 OpenJDK ICC Profile remote code execution (6963489)
bugzilla·2010-10-04·CVSS 10.0
CVE-2010-3566 [CRITICAL] CVE-2010-3566 OpenJDK ICC Profile remote code execution (6963489)
CVE-2010-3566 OpenJDK ICC Profile remote code execution (6963489)
ICC Profile Device Information Tag Remote Code Execution Vulnerability.
This issue (CVE-2010-3566) is not exploitable when using OpenJDK on Red Hat Enterprise Linux 5 and 6; however, the fix was added as a defense in depth patch.
Discussion:
This issue has been addressed in following products:
Red Hat Enterprise Linux 5
Via RHSA-2010:0768 https://rhn.redhat.com/errata/RHSA-2010-0768.html
---
This issue has been addressed in following products:
Extras for RHEL 4
Extras for Red Hat Enterprise Linux 5
Via RHSA-2010:0770 https://rhn.redhat.com/errata/RHSA-2010-0770.html
---
This issue has been addressed in following products:
Extras for RHEL 4
Extras for Red Hat Enterprise Linux 5
Via RHSA-2010:0807 https://rhn.red
http://securitytracker.com/id?1023773http://www.securityfocus.com/bid/39024http://www.us-cert.gov/cas/techalerts/TA10-068A.htmlhttp://www.us-cert.gov/cas/techalerts/TA10-089A.htmlhttp://www.vupen.com/english/advisories/2010/0744https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8532http://securitytracker.com/id?1023773http://www.securityfocus.com/bid/39024http://www.us-cert.gov/cas/techalerts/TA10-068A.htmlhttp://www.us-cert.gov/cas/techalerts/TA10-089A.htmlhttp://www.vupen.com/english/advisories/2010/0744https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8532
2010-03-31
Published