1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: MSIE CVE-2010-0249

Web Attack: MSIE CVE-2010-0249

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit a remote code execution vulnerability in Microsoft Internet Explorer.

Additional Information

Internet Explorer is a browser for the Microsoft Windows operating system.

Internet Explorer is prone to a remote code-execution vulnerability. The issue is caused by a memory-corruption error triggered by an invalid pointer to a deleted object. Attackers can exploit this issue by enticing an unsuspecting user into opening a specially crafted webpage.

Attackers can exploit this issue to execute arbitrary code in the context of the user running the browser. Successful exploits will compromise the application and possibly the computer. Failed attacks will cause denial-of-service conditions.

Affected

  • Microsoft Internet Explorer

Response

Download and install all vendor patches related to this vulnerability.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube