1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: IE Attribute Handler Code Exec CVE-2010-0806

Web Attack: IE Attribute Handler Code Exec CVE-2010-0806

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects a remote code execution vulnerability in the Microsoft Internet Explorer.

Additional Information

Microsoft Internet Explorer is a browser for the Windows operating system.

Internet Explorer is prone to a remote code-execution vulnerability. The issue occurs because an invalid pointer may attempt to access an object after it has been deleted. This may cause memory to become corrupted. This issue affects the 'iepeers.dll' library.

Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks may cause denial-of-service conditions.

Affected

  • Microsoft Internet Explorer 6.0, 7.0

Response

Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube