CVE-2010-0806

CVSS 2.0 Score 9.3 of 10 (high)

Details

Published Mar 10, 2010

Updated: Dec 7, 2023

CWE ID 399

Summary

CVE-2010-0806 is a use-after-free vulnerability affecting the Peer Objects component (iepeers.dll) in older versions of Microsoft Internet Explorer (6, 6 SP1, and 7). This issue arises when an attacker can manipulate an invalid pointer, leading to uninitialized memory corruption and subsequent arbitrary code execution. This vulnerability was exploited in the wild in March 2010.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Windows Vista
Microsoft Windows Server 2003
Microsoft Windows XP
Microsoft Windows Server 2008
Microsoft Windows 2000

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/KLauw-
https://www.cve.org/CVERecord?id=CVE-2010-0806
https://nvd.nist.gov/vuln/detail/CVE-2010-0806

Back to Vulnerability Database