What is the severity of CVE-2010-0248?

CVE-2010-0248 has a critical severity rating due to potential remote code execution.

How do I fix CVE-2010-0248?

To fix CVE-2010-0248, update Microsoft Internet Explorer to the latest version provided by Microsoft.

Which versions of Internet Explorer are affected by CVE-2010-0248?

CVE-2010-0248 affects Internet Explorer versions 6, 7, and 8, including their service packs.

Can CVE-2010-0248 be exploited remotely?

Yes, CVE-2010-0248 can be exploited remotely by attackers to execute arbitrary code.

What are the risks of not addressing CVE-2010-0248?

Ignoring CVE-2010-0248 could lead to severe security breaches, including unauthorized access and complete system compromise.

Vulnerability/
CVE-2010-0248

critical

9.3

CWE

94 416

22/1/2010

21/10/2024

CVE-2010-0248: Code Injection

First published: Fri Jan 22 2010(Updated: )

Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML Object Memory Corruption Vulnerability."

Credit: secure@microsoft.com secure@microsoft.com

Affected Software	Affected Version	How to fix
All of
Any of
Internet Explorer	=8
Internet Explorer	=8.0.6001
Any of
Microsoft Windows 7
Microsoft Windows Server 2003	=sp2
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
All of
Any of
Internet Explorer	=7
Internet Explorer	=7.0
Internet Explorer	=7.0.5730-unknown
Internet Explorer	=7.0.5730.11
Internet Explorer	=7.00.5730.1100
Internet Explorer	=7.00.6000.16386
Internet Explorer	=7.00.6000.16441
Any of
Microsoft Windows Server 2003	=sp2
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
All of
Internet Explorer	=6-sp1
Microsoft Windows 2000	=sp4
All of
Any of
Internet Explorer	=6
Internet Explorer	=6.0
Internet Explorer	=6.00.2462.0000
Internet Explorer	=6.00.2479.0006
Internet Explorer	=6.0.2600
Internet Explorer	=6.00.2600.0000
Internet Explorer	=6.0.2800
Internet Explorer	=6.0.2800.1106
Internet Explorer	=6.00.2800.1106
Internet Explorer	=6.0.2900
Internet Explorer	=6.0.2900.2180
Internet Explorer	=6.00.2900.2180
Internet Explorer	=6.00.3663.0000
Internet Explorer	=6.00.3718.0000
Internet Explorer	=6.00.3790.0000
Internet Explorer	=6.00.3790.1830
Internet Explorer	=6.00.3790.3959
Any of
Microsoft Windows Server 2003	=sp2
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Internet Explorer	=8
Internet Explorer	=8.0.6001
Microsoft Windows 7
Microsoft Windows Server 2003	=sp2
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Internet Explorer	=7
Internet Explorer	=7.0
Internet Explorer	=7.0.5730-unknown
Internet Explorer	=7.0.5730.11
Internet Explorer	=7.00.5730.1100
Internet Explorer	=7.00.6000.16386
Internet Explorer	=7.00.6000.16441
Internet Explorer	=6-sp1
Microsoft Windows 2000	=sp4
Internet Explorer	=6
Internet Explorer	=6.0
Internet Explorer	=6.00.2462.0000
Internet Explorer	=6.00.2479.0006
Internet Explorer	=6.0.2600
Internet Explorer	=6.00.2600.0000
Internet Explorer	=6.0.2800
Internet Explorer	=6.0.2800.1106
Internet Explorer	=6.00.2800.1106
Internet Explorer	=6.0.2900
Internet Explorer	=6.0.2900.2180
Internet Explorer	=6.00.2900.2180
Internet Explorer	=6.00.3663.0000
Internet Explorer	=6.00.3718.0000
Internet Explorer	=6.00.3790.0000
Internet Explorer	=6.00.3790.1830
Internet Explorer	=6.00.3790.3959

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0248?
CVE-2010-0248 has a critical severity rating due to potential remote code execution.
How do I fix CVE-2010-0248?
To fix CVE-2010-0248, update Microsoft Internet Explorer to the latest version provided by Microsoft.
Which versions of Internet Explorer are affected by CVE-2010-0248?
CVE-2010-0248 affects Internet Explorer versions 6, 7, and 8, including their service packs.
Can CVE-2010-0248 be exploited remotely?
Yes, CVE-2010-0248 can be exploited remotely by attackers to execute arbitrary code.
What are the risks of not addressing CVE-2010-0248?
Ignoring CVE-2010-0248 could lead to severe security breaches, including unauthorized access and complete system compromise.

collector/nvd-historical
agent/type
agent/author
agent/references
agent/description
agent/first-publish-date
agent/event
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-index
agent/softwarecombine
vendor/microsoft
canonical/internet explorer
version/internet explorer/8
version/internet explorer/8.0.6001
canonical/microsoft windows 7
canonical/microsoft windows server 2003
version/microsoft windows server 2003/sp2
canonical/microsoft windows server 2008 itanium
version/microsoft windows server 2008 itanium/r2
version/microsoft windows server 2008 itanium/sp2
canonical/microsoft windows vista
version/microsoft windows vista/sp1
version/microsoft windows vista/sp2
canonical/microsoft windows xp
version/microsoft windows xp/sp2
version/microsoft windows xp/sp3
version/internet explorer/7
version/internet explorer/7.0
version/internet explorer/7.0.5730-unknown
version/internet explorer/7.0.5730.11
version/internet explorer/7.00.5730.1100
version/internet explorer/7.00.6000.16386
version/internet explorer/7.00.6000.16441
version/internet explorer/6-sp1
canonical/microsoft windows 2000
version/microsoft windows 2000/sp4
version/internet explorer/6
version/internet explorer/6.0
version/internet explorer/6.00.2462.0000
version/internet explorer/6.00.2479.0006
version/internet explorer/6.0.2600
version/internet explorer/6.00.2600.0000
version/internet explorer/6.0.2800
version/internet explorer/6.0.2800.1106
version/internet explorer/6.00.2800.1106
version/internet explorer/6.0.2900
version/internet explorer/6.0.2900.2180
version/internet explorer/6.00.2900.2180
version/internet explorer/6.00.3663.0000
version/internet explorer/6.00.3718.0000
version/internet explorer/6.00.3790.0000
version/internet explorer/6.00.3790.1830
version/internet explorer/6.00.3790.3959

CVE-2010-0248: Code Injection

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0248?

How do I fix CVE-2010-0248?

Which versions of Internet Explorer are affected by CVE-2010-0248?

Can CVE-2010-0248 be exploited remotely?

What are the risks of not addressing CVE-2010-0248?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2010-0248?

How do I fix CVE-2010-0248?

Which versions of Internet Explorer are affected by CVE-2010-0248?

Can CVE-2010-0248 be exploited remotely?

What are the risks of not addressing CVE-2010-0248?