Vulnerability Description
The CTimeoutEventList::InsertIntoTimeoutList function in Microsoft mshtml.dll uses a certain pointer value as part of producing Timer ID values for the setTimeout and setInterval methods in VBScript and JScript, which allows remote attackers to obtain sensitive information about the heap memory addresses used by an application, as demonstrated by the Internet Explorer 8 application.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer | 8 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2010-06/0259.htmlBroken LinkExploit
- http://twitter.com/WisecWisec/statuses/17254776077Third Party Advisory
- http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/201Not Applicable
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Third Party Advisory
- http://archives.neohapsis.com/archives/bugtraq/2010-06/0259.htmlBroken LinkExploit
- http://twitter.com/WisecWisec/statuses/17254776077Third Party Advisory
- http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/201Not Applicable
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Third Party Advisory
FAQ
What is CVE-2010-3886?
CVE-2010-3886 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The CTimeoutEventList::InsertIntoTimeoutList function in Microsoft mshtml.dll uses a certain pointer value as part of producing Timer ID values for the setTimeout and setInterval methods in VBScript a...
How severe is CVE-2010-3886?
CVE-2010-3886 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-3886?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Internet Explorer.