Release DateFeb 10, 2010 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt against a remote code-execution vulnerabilityin IE. It allows a remote attacker to execute arbitrary code via sending a crafted web page. |
Affected ProductsMicrosoft Windows 2000 Service Pack 4Windows XP Service Pack 2 and Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Windows Server 2003 with SP2 for Itanium-based Systems |
Recommended ActionsApply the patch, available from the vendor's website:http://update.microsoft.com |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2010-0027 |
Reference/shttp://www.securityfocus.com/bid/37884 (BugTraq)http://technet.microsoft.com/en-us/security/bulletin/MS10-007.mspx (MS-ID) |
