漏洞信息详情
Microsoft Internet Explorer 代码注入漏洞
- CNNVD编号:CNNVD-201001-233
- 危害等级: 超危
- CVE编号: CVE-2010-0245
- 漏洞类型: 代码注入
- 发布时间: 2010-01-22
- 威胁类型: 远程
- 更新时间: 2021-07-27
- 厂 商: microsoft
- 漏洞来源: Sam Thomas of eshu...
漏洞简介
Microsoft Internet Explorer 8版本没有适当地处理内存中的对象,这可能会允许远程攻击者通过访问(1)未被适当初始化的或(2)被删除的一个对象,执行任意代码。该漏洞会引起内存破坏,它又称为\"未初始化内存破坏漏洞\",且该漏洞不同于CVE-2009-3671,CVE-2009-3674和CVE-2010-0246。
漏洞公告
Microsoft Internet Explorer 8
Microsoft Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=7d480c87-2ca9 -4505-a59d-a6d73d001fa5
Microsoft Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 x64 Edition (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=3e2e740b-8417 -4758-8468-15221249ec71
Microsoft Cumulative Security Update for Internet Explorer 8 for Windows XP (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=7c2948fb-f486 -4801-bc21-bbf40d5a78c2
Microsoft Cumulative Security Update for Internet Explorer 8 for Windows XP x64 Edition (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=41b83fad-948b -4a9c-80ed-9c5a60bd35b4
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows 7 (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=278443c1-15dc -436b-893b-ffea6d29d16d
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows 7 x64 Edition (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=a584cd0f-2e05 -4e36-8858-0ffead637162
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=f5ce8582-af63 -4870-bee3-0abeeefa1458
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 R2 for Itanium-based Syste
http://www.microsoft.com/downloads/details.aspx?familyid=9d137bab-8312 -4240-af74-c65ba652fde0
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 R2 x64 Edition (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=d3386793-a594 -4bc5-8308-28b561d43087
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 x64 Edition (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=be11981c-d286 -4e3c-94bf-d4e67a975d5a
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Vista (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=5e2cbd7d-f64f -49e5-a159-1965ebfe2a92
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Vista x64 Edition (KB978207)
http://www.microsoft.com/downloads/details.aspx?familyid=b7a7e8e7-f4c5 -459d-ab6c-05a192e1e3f9
参考网址
来源:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-0245※http://www.securityfocus.com/bid/37892
链接:无
来源:XF
链接:https://exchange.xforce.ibmcloud.com/vulnerabilities/55775
来源:OVAL
链接:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8491
来源:MS
链接:https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002
受影响实体
- Microsoft Ie:8
- Microsoft Ie:8.0.6001
补丁
- Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 x64 Edition (KB978207)
- Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 x64 Edition (KB978207)
- Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 R2 for Itanium-based Systems (KB978207)
- Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 (KB978207)
- Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 (KB978207)
评论