Microsoft Internet Explorer Multiple Vulnerabilities (2183461) Network Vulnerability

Summary

This host is missing a critical security update according to Microsoft Bulletin MS10-053.

Impact

Successful exploitation could allow remote attackers to conduct cross-domain scripting attacks, or to execute arbitrary code by tricking a user into visiting a malicious web page. Impact Level: System/Application

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://technet.microsoft.com/en-us/security/bulletin/MS10-053

Insight

Multiple flaws are caused by origin validation, race conditions, and memory corruption errors when processing malformed HTML and JavaScript data.

Affected

Microsoft Internet Explorer version 6.x/7.x/8.x

References

http://support.microsoft.com/kb/2183461
http://technet.microsoft.com/en-us/security/bulletin/MS10-053
http://www.vupen.com/english/advisories/2010/2050

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-1258, CVE-2010-2556, CVE-2010-2557, CVE-2010-2558, CVE-2010-2559, CVE-2010-2560
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Microsoft Ancillary Function Driver Elevation of Privilege Vulnerability (956803)
Microsoft Foundation Classes Could Allow Remote Code Execution Vulnerability (2387149)
Microsoft .NET Framework Privilege Elevation Vulnerability (3005210)
Cumulative Security Update for Internet Explorer (937143)
Cumulative Security Update for Internet Explorer (958215)

Take action and discover your vulnerabilities