CVE-2010-3962
CVE-2010-3962
In short
Internet Explorer 6, 7, and 8 have a flaw where malicious CSS code on a webpage can crash the browser or make it run harmful programs. This happens because the browser tries to use data that was already deleted from memory.
Technical detail
Use-after-free vulnerability in IE 6-8 triggered via crafted CSS token sequences involving the clip attribute, leading to access of freed memory. Remote attacker can achieve arbitrary code execution through malicious HTML/CSS without user interaction beyond visiting a compromised website. Uninitialized memory corruption allows bypassing security boundaries.
Summary generated and translated by AI from the official description.
Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code via vectors related to Cascading Style Sheets (CSS) token sequences and the clip attribute, aka an "invalid flag reference" issue or "Uninitialized Memory Corruption Vulnerability," as exploited in the wild in November 2010.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 5
cve_referencewww.exploit-db.com/exploits/15418unverifiedcve_referencewww.exploit-db.com/exploits/15421unverifiedexploitdbwww.exploit-db.com/exploits/15418unverifiedexploitdbwww.exploit-db.com/exploits/16551unverifiedexploitdbwww.exploit-db.com/exploits/15421unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://blogs.technet.com/b/msrc/archive/2010/11/02/microsoft-releases-security-advisory-2458511.aspxhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-090http://secunia.com/advisories/42091https://exchange.xforce.ibmcloud.com/vulnerabilities/62962https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12279https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-3962http://www.exploit-db.com/exploits/15418http://www.exploit-db.com/exploits/15421http://www.kb.cert.org/vuls/id/899748http://www.microsoft.com/technet/security/advisory/2458511.mspxhttp://www.securityfocus.com/bid/44536http://www.securitytracker.com/id?1024676