Release DateMar 31, 2010 |
Severitycritical |
ImpactDenial of serviceSystem compromise |
DescriptionThis indicates a possible attack against a race-condition memory-corruption vulnerability in Microsoft Internet Explorer.This vulnerability is caused by improper handling of scripts loading and HTML parsing. A remote attacker may exploit this to execute arbitrary code or to cause a denial-of-service condition. |
Affected ProductsMicrosoft IE 5.01-IE 8 |
Recommended ActionsPlease refer to the Microsoft advisory for patches:http://www.microsoft.com/technet/security/Bulletin/ms10-018.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2010-0489 |
Reference/shttp://technet.microsoft.com/en-us/security/bulletin/ms10-018.mspx (MS-ID) |
