New Search

Uninitialized Memory Corruption Vulnerability (CVE-2010-0806)

oval:org.mitre.oval:def:8446

Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6 6 SP1 and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object as exploited in the wild in March 2010 aka "Uninitialized Memory Corruption Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows 2000
  • Microsoft Windows Vista
  • Microsoft Windows Server 2008
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2010-0806
Product(s):
  • Microsoft Internet Explorer 6
  • Microsoft Internet Explorer 7