← back
CVE-2010-1256

CVE-2010-1256

EPSS 28.2%
Unspecified vulnerability in Microsoft IIS 6.0, 7.0, and 7.5, when Extended Protection for Authentication is enabled, allows remote authenticated users to execute arbitrary code via unknown vectors related to "token checking" that trigger memory corruption, aka "IIS Authentication Memory Corruption Vulnerability."
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-040https://exchange.xforce.ibmcloud.com/vulnerabilities/58864https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7149http://www.securityfocus.com/bid/40573http://www.us-cert.gov/cas/techalerts/TA10-159B.html