Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2010-0811 | First vendor Publication | 2010-06-08 |
Vendor | Cve | Last vendor Modification | 2023-12-07 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Multiple unspecified vulnerabilities in the Microsoft Internet Explorer 8 Developer Tools ActiveX control in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allow remote attackers to execute arbitrary code via unknown vectors that "corrupt the system state," aka "Microsoft Internet Explorer 8 Developer Tools Vulnerability." |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0811 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2011-04-13 | Name : Microsoft IE Developer Tools WMITools and Windows Messenger ActiveX Control V... File : nvt/secpod_ms11-027.nasl |
2010-12-29 | Name : Microsoft WMI Administrative Tools ActiveX Control Remote Code Execution Vuln... File : nvt/gb_ms_wmi_admin_tools_activex_code_exec_vuln.nasl |
2010-06-15 | Name : Computer Associates WebScan ActiveX Control Multiple Remote Code Execution Vu... File : nvt/gb_ca_activex_mult_code_exec_vuln.nasl |
2010-06-09 | Name : Microsoft Windows Kernel Mode Drivers Privilege Escalation Vulnerabilities (9... File : nvt/secpod_ms10-032.nasl |
2010-06-09 | Name : Microsoft Data Analyzer and IE Developer Tools ActiveX Control Vulnerability ... File : nvt/secpod_ms10-034.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
65218 | Microsoft IE 8 Developer Tools ActiveX Remote Code Execution Microsoft Internet Explorer 8 contains an unspecified flaw related to the Internet Explorer Developer Tools ActiveX Control, iedvtool.dll, that may allow a context-dependent attacker to execute arbitrary code via a crafted web page that causes system state corruption. No further details have been provided. |
Snort® IPS/IDS
Date | Description |
---|---|
2015-01-20 | Microsoft Internet Explorer 8 Developer Tool ActiveX clsid access RuleID : 32843 - Revision : 3 - Type : BROWSER-PLUGINS |
2015-01-20 | Microsoft Internet Explorer 8 Developer Tool ActiveX clsid access RuleID : 32842 - Revision : 4 - Type : BROWSER-PLUGINS |
2015-01-20 | Microsoft Windows Messenger ActiveX clsid access RuleID : 32841 - Revision : 3 - Type : BROWSER-PLUGINS |
2015-01-20 | Microsoft Internet Explorer 8 Developer Tool ActiveX clsid access RuleID : 32840 - Revision : 4 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Windows WMI administrator tools object viewer ActiveX clsid access RuleID : 28351 - Revision : 7 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Windows WMI administrator tools object viewer ActiveX clsid access RuleID : 28350 - Revision : 7 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Windows WMI administrator tools object viewer ActiveX clsid access RuleID : 28349 - Revision : 7 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Windows Messenger ActiveX function call access RuleID : 26393 - Revision : 6 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Internet Explorer 8 Developer Tool ActiveX clsid access RuleID : 18672 - Revision : 8 - Type : BROWSER-IE |
2014-01-10 | Microsoft Windows Messenger ActiveX clsid access RuleID : 18668 - Revision : 15 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Windows WMI Administrator Tools Object Viewer ActiveX function call... RuleID : 18329 - Revision : 14 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Windows WMI Administrator Tools Object Viewer ActiveX function call... RuleID : 18242 - Revision : 15 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Windows WMI administrator tools object viewer ActiveX clsid access RuleID : 18241 - Revision : 17 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Internet Explorer 8 Developer Tool ActiveX clsid access RuleID : 16635 - Revision : 13 - Type : BROWSER-PLUGINS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2011-04-13 | Name : The remote Windows host is missing an update that disables selected ActiveX c... File : smb_nt_ms11-027.nasl - Type : ACT_GATHER_INFO |
2010-06-09 | Name : The remote Windows host is missing an update that disables selected ActiveX c... File : smb_nt_ms10-034.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-02-02 01:12:51 |
|
2024-02-01 12:03:31 |
|
2023-12-07 21:28:04 |
|
2023-09-05 12:11:58 |
|
2023-09-05 01:03:22 |
|
2023-09-02 12:12:00 |
|
2023-09-02 01:03:25 |
|
2023-08-12 12:14:14 |
|
2023-08-12 01:03:24 |
|
2023-08-11 12:12:04 |
|
2023-08-11 01:03:32 |
|
2023-08-06 12:11:36 |
|
2023-08-06 01:03:26 |
|
2023-08-04 12:11:41 |
|
2023-08-04 01:03:27 |
|
2023-07-14 12:11:37 |
|
2023-07-14 01:03:25 |
|
2023-03-29 01:13:18 |
|
2023-03-28 12:03:31 |
|
2022-10-11 12:10:22 |
|
2022-10-11 01:03:13 |
|
2021-05-04 12:11:13 |
|
2021-04-22 01:11:46 |
|
2020-05-23 00:25:23 |
|
2018-10-31 00:20:02 |
|
2018-10-13 00:22:55 |
|
2018-09-20 12:08:17 |
|
2017-09-19 09:23:40 |
|
2016-09-30 01:02:21 |
|
2016-08-31 12:02:05 |
|
2016-08-05 12:02:26 |
|
2016-06-28 18:04:14 |
|
2016-04-26 19:37:38 |
|
2015-01-20 21:25:00 |
|
2014-02-17 10:54:10 |
|
2014-01-19 21:26:40 |
|
2013-05-10 23:19:31 |
|