|
303321
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory in certain circumstances involving use of Microsoft Word to read Word documents, which allows remote attackers to ex…
|
CWE-94
Code Injection
|
CVE-2010-3331
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303322
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 8 does not properly restrict script access to content from a different (1) domain or (2) zone, which allows remote attackers to obtain sensitive information via …
|
CWE-200
Information Exposure
|
CVE-2010-3330
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303323
|
- |
|
microsoft
|
internet_explorer
|
mshtmled.dll in Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code via a crafted Microsoft Office document that causes the HtmlDlgHelper class destructor to access …
|
CWE-94
Code Injection
|
CVE-2010-3329
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303324
|
8.8 |
HIGH
Network
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in the CAttrArray::PrivateFind function in mshtml.dll in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code by setting an unspecifi…
|
CWE-416
Use After Free
|
CVE-2010-3328
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303325
|
- |
|
microsoft
|
internet_explorer
|
The implementation of HTML content creation in Microsoft Internet Explorer 6 through 8 does not remove the Anchor element during pasting and editing, which might allow remote attackers to obtain sens…
|
CWE-200
Information Exposure
|
CVE-2010-3327
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303326
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i…
|
CWE-94
Code Injection
|
CVE-2010-3326
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303327
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 8 does not properly handle unspecified special characters in Cascading Style Sheets (CSS) documents, which allows remote attackers to obtain sensitive informatio…
|
CWE-200
Information Exposure
|
CVE-2010-3325
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303328
|
- |
|
microsoft
|
sharepoint_services
sharepoint_server
internet_explorer
|
Cross-site scripting (XSS) vulnerability in the toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2 and Office SharePoin…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3243
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303329
|
- |
|
microsoft
|
open_xml_file_format_converter
office
excel
|
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code…
|
CWE-20
Improper Input Validation
|
CVE-2010-3242
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303330
|
- |
|
microsoft
|
open_xml_file_format_converter
office
excel
|
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate binary file-format information, which allows remote attackers to execute ar…
|
CWE-20
Improper Input Validation
|
CVE-2010-3241
|
2024-11-21 10:18 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
