{"api_version":"1","generated_at":"2026-06-02T15:25:45+00:00","cve":"CVE-2010-0249","urls":{"html":"https://cve.report/CVE-2010-0249","api":"https://cve.report/api/cve/CVE-2010-0249.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2010-0249","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2010-0249"},"summary":{"title":"CVE-2010-0249","description":"Use-after-free vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 on Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object, related to incorrectly initialized memory and improper handling of objects in memory, as exploited in the wild in December 2009 and January 2010 during Operation Aurora, aka \"HTML Object Memory Corruption Vulnerability.\"","state":"PUBLISHED","assigner":"microsoft","published_at":"2010-01-15 17:30:00","updated_at":"2026-05-21 12:57:01"},"problem_types":["CWE-416","n/a","CWE-416 CWE-416 Use After Free"],"metrics":[{"version":"3.1","source":"nvd@nist.gov","type":"Primary","score":"8.8","severity":"HIGH","vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"}},{"version":"3.1","source":"ADP","type":"DECLARED","score":"8.8","severity":"HIGH","vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","data":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":8.8,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"REQUIRED","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","version":"3.1"}},{"version":"3.1","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","score":"8.8","severity":"HIGH","vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"}},{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"9.3","severity":"","vector":"AV:N/AC:M/Au:N/C:C/I:C/A:C","data":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"}}],"references":[{"url":"http://www.exploit-db.com/exploits/11167","name":"http://www.exploit-db.com/exploits/11167","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory","VDB Entry"],"title":"Internet Explorer Aurora Exploit","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx","name":"http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Vendor Advisory"],"title":"Security Advisory 979352 Released - The Microsoft Security Response Center (MSRC) - Site Home - TechNet Blogs","mime":"text/html","httpstatus":"503","archivestatus":"200"},{"url":"http://news.cnet.com/8301-27080_3-10435232-245.html","name":"http://news.cnet.com/8301-27080_3-10435232-245.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"],"title":"New IE hole exploited in attacks on U.S. firms | InSecurity Complex - CNET News","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/55642","name":"https://exchange.xforce.ibmcloud.com/vulnerabilities/55642","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://securitytracker.com/id?1023462","name":"http://securitytracker.com/id?1023462","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory","VDB Entry"],"title":"SecurityTracker.com Archives - Microsoft Internet Explorer Invalid Pointer Reference Lets Remote Users Execute Arbitrary Code","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.microsoft.com/technet/security/advisory/979352.mspx","name":"http://www.microsoft.com/technet/security/advisory/979352.mspx","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Patch","Vendor Advisory"],"title":"Microsoft Security Advisory (979352): Vulnerability in Internet Explorer Could Allow Remote Code Execution","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2010/0135","name":"http://www.vupen.com/english/advisories/2010/0135","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.kb.cert.org/vuls/id/492515","name":"http://www.kb.cert.org/vuls/id/492515","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"],"title":"US-CERT Vulnerability Note VU#492515","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://support.microsoft.com/kb/979352","name":"http://support.microsoft.com/kb/979352","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"],"title":"Microsoft Security Advisory: Vulnerability in Internet Explorer could allow remote code execution","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-0249","name":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-0249","refsource":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["US Government Resource"],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"http://www.us-cert.gov/cas/techalerts/TA10-055A.html","name":"http://www.us-cert.gov/cas/techalerts/TA10-055A.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory","US Government Resource"],"title":"US-CERT Technical Cyber Security Alert TA10-055A -- Malicious Activity Associated with \"Aurora\" Internet Explorer Exploit","mime":"text/xml","httpstatus":"200","archivestatus":"200"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002","name":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"],"title":"Microsoft Security Bulletin MS10-002 - Critical | Microsoft Docs","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6835","name":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6835","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"],"title":"Repository  /  Oval Repository","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/37815","name":"http://www.securityfocus.com/bid/37815","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Exploit","Third Party Advisory","VDB Entry"],"title":"Internet Explorer CVE-2010-0249 'srcElement()' Remote Code Execution Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://osvdb.org/61697","name":"http://osvdb.org/61697","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"],"title":"","mime":"","httpstatus":"-1","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2010-0249","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2010-0249","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[{"source":"ADP","time":"2026-05-20T00:00:00.000Z","lang":"en","value":"CVE-2010-0249 added to CISA KEV"}],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2010","cve_id":"249","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"microsoft","cpe5":"internet_explorer","cpe6":"5.0.1","cpe7":"sp4","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"microsoft","cpe5":"internet_explorer","cpe6":"6","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"microsoft","cpe5":"internet_explorer","cpe6":"6","cpe7":"sp1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"microsoft","cpe5":"internet_explorer","cpe6":"7.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"0","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"microsoft","cpe5":"windows_2000","cpe6":"-","cpe7":"sp4","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"0","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"microsoft","cpe5":"windows_server_2003","cpe6":"-","cpe7":"sp2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"itanium","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"0","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"microsoft","cpe5":"windows_server_2003","cpe6":"-","cpe7":"sp2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"x64","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"0","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"microsoft","cpe5":"windows_xp","cpe6":"-","cpe7":"sp2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"0","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"microsoft","cpe5":"windows_xp","cpe6":"-","cpe7":"sp2","cpe8":"*","cpe9":"*","cpe10":"professional","cpe11":"*","cpe12":"x64","cpe13":"*"},{"cve_year":"2010","cve_id":"249","vulnerable":"0","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"microsoft","cpe5":"windows_xp","cpe6":"-","cpe7":"sp3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":{"cve_year":"2010","cve_id":"249","cve":"CVE-2010-0249","vendorProject":"Microsoft","product":"Internet Explorer","vulnerabilityName":"Microsoft Internet Explorer Use-After-Free Vulnerability","dateAdded":"2026-05-20","shortDescription":"Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object. The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.","requiredAction":"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.","dueDate":"2026-06-03","knownRansomwareCampaignUse":"Unknown","notes":"https://learn.microsoft.com/en-us/security-updates/SecurityAdvisories/2010/979352 ; https://nvd.nist.gov/vuln/detail/CVE-2010-0249","cwes":"CWE-416","catalogVersion":"2026.06.01","updated_at":"2026-06-01 17:50:09"},"epss":{"cve_year":"2010","cve_id":"249","cve":"CVE-2010-0249","epss":"0.887880000","percentile":"0.995330000","score_date":"2026-06-01","updated_at":"2026-06-02 00:05:21"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T00:45:11.028Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.microsoft.com/technet/security/advisory/979352.mspx"},{"name":"oval:org.mitre.oval:def:6835","tags":["vdb-entry","signature","x_refsource_OVAL","x_transferred"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6835"},{"name":"61697","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/61697"},{"name":"37815","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/37815"},{"name":"VU#492515","tags":["third-party-advisory","x_refsource_CERT-VN","x_transferred"],"url":"http://www.kb.cert.org/vuls/id/492515"},{"name":"11167","tags":["exploit","x_refsource_EXPLOIT-DB","x_transferred"],"url":"http://www.exploit-db.com/exploits/11167"},{"name":"979352","tags":["vendor-advisory","x_refsource_MSKB","x_transferred"],"url":"http://support.microsoft.com/kb/979352"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx"},{"name":"ie-freed-object-code-execution(55642)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/55642"},{"name":"TA10-055A","tags":["third-party-advisory","x_refsource_CERT","x_transferred"],"url":"http://www.us-cert.gov/cas/techalerts/TA10-055A.html"},{"name":"MS10-002","tags":["vendor-advisory","x_refsource_MS","x_transferred"],"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://news.cnet.com/8301-27080_3-10435232-245.html"},{"name":"1023462","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1023462"},{"name":"ADV-2010-0135","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2010/0135"}],"title":"CVE Program Container"},{"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":8.8,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"REQUIRED","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","version":"3.1"}},{"other":{"content":{"id":"CVE-2010-0249","options":[{"Exploitation":"active"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","timestamp":"2026-05-20T00:00:00+00:00","version":"2.0.3"},"type":"ssvc"}},{"other":{"content":{"dateAdded":"2026-05-20","reference":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-0249"},"type":"kev"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-416","description":"CWE-416 Use After Free","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-05-21T03:55:30.221Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"references":[{"tags":["government-resource"],"url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-0249"}],"timeline":[{"lang":"en","time":"2026-05-20T00:00:00.000Z","value":"CVE-2010-0249 added to CISA KEV"}],"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2010-01-14T00:00:00.000Z","descriptions":[{"lang":"en","value":"Use-after-free vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 on Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object, related to incorrectly initialized memory and improper handling of objects in memory, as exploited in the wild in December 2009 and January 2010 during Operation Aurora, aka \"HTML Object Memory Corruption Vulnerability.\""}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-10-12T19:57:01.000Z","orgId":"f38d906d-7342-40ea-92c1-6c4a2c6478c8","shortName":"microsoft"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"http://www.microsoft.com/technet/security/advisory/979352.mspx"},{"name":"oval:org.mitre.oval:def:6835","tags":["vdb-entry","signature","x_refsource_OVAL"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6835"},{"name":"61697","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/61697"},{"name":"37815","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/37815"},{"name":"VU#492515","tags":["third-party-advisory","x_refsource_CERT-VN"],"url":"http://www.kb.cert.org/vuls/id/492515"},{"name":"11167","tags":["exploit","x_refsource_EXPLOIT-DB"],"url":"http://www.exploit-db.com/exploits/11167"},{"name":"979352","tags":["vendor-advisory","x_refsource_MSKB"],"url":"http://support.microsoft.com/kb/979352"},{"tags":["x_refsource_CONFIRM"],"url":"http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx"},{"name":"ie-freed-object-code-execution(55642)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/55642"},{"name":"TA10-055A","tags":["third-party-advisory","x_refsource_CERT"],"url":"http://www.us-cert.gov/cas/techalerts/TA10-055A.html"},{"name":"MS10-002","tags":["vendor-advisory","x_refsource_MS"],"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002"},{"tags":["x_refsource_MISC"],"url":"http://news.cnet.com/8301-27080_3-10435232-245.html"},{"name":"1023462","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1023462"},{"name":"ADV-2010-0135","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2010/0135"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"secure@microsoft.com","ID":"CVE-2010-0249","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Use-after-free vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 on Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object, related to incorrectly initialized memory and improper handling of objects in memory, as exploited in the wild in December 2009 and January 2010 during Operation Aurora, aka \"HTML Object Memory Corruption Vulnerability.\""}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"http://www.microsoft.com/technet/security/advisory/979352.mspx","refsource":"CONFIRM","url":"http://www.microsoft.com/technet/security/advisory/979352.mspx"},{"name":"oval:org.mitre.oval:def:6835","refsource":"OVAL","url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6835"},{"name":"61697","refsource":"OSVDB","url":"http://osvdb.org/61697"},{"name":"37815","refsource":"BID","url":"http://www.securityfocus.com/bid/37815"},{"name":"VU#492515","refsource":"CERT-VN","url":"http://www.kb.cert.org/vuls/id/492515"},{"name":"11167","refsource":"EXPLOIT-DB","url":"http://www.exploit-db.com/exploits/11167"},{"name":"979352","refsource":"MSKB","url":"http://support.microsoft.com/kb/979352"},{"name":"http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx","refsource":"CONFIRM","url":"http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx"},{"name":"ie-freed-object-code-execution(55642)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/55642"},{"name":"TA10-055A","refsource":"CERT","url":"http://www.us-cert.gov/cas/techalerts/TA10-055A.html"},{"name":"MS10-002","refsource":"MS","url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002"},{"name":"http://news.cnet.com/8301-27080_3-10435232-245.html","refsource":"MISC","url":"http://news.cnet.com/8301-27080_3-10435232-245.html"},{"name":"1023462","refsource":"SECTRACK","url":"http://securitytracker.com/id?1023462"},{"name":"ADV-2010-0135","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2010/0135"}]}}}},"cveMetadata":{"assignerOrgId":"f38d906d-7342-40ea-92c1-6c4a2c6478c8","assignerShortName":"microsoft","cveId":"CVE-2010-0249","datePublished":"2010-01-15T17:00:00.000Z","dateReserved":"2010-01-07T00:00:00.000Z","dateUpdated":"2026-05-21T03:55:30.221Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2010-01-15 17:30:00","lastModifiedDate":"2026-05-21 12:57:01","problem_types":["CWE-416","n/a","CWE-416 CWE-416 Use After Free"],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:*","matchCriteriaId":"2EB39B99-91A0-4B70-B12A-BA37F6AFBA83"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:internet_explorer:6:sp1:*:*:*:*:*:*","matchCriteriaId":"D47247A3-7CD7-4D67-9D9B-A94A504DA1BE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*","matchCriteriaId":"CA2CBE65-F4B6-49AF-983C-D3CF6C172CC5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:internet_explorer:6:-:*:*:*:*:*:*","matchCriteriaId":"0C69B5E6-D1AF-46F1-8AE6-DD5D4E3D9160"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:itanium:*","matchCriteriaId":"9F98AE07-3995-4501-9804-FEA5A87ADFAD"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:x64:*","matchCriteriaId":"A7371547-290D-4D0D-B98D-CA28B4D2E8B0"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:*:*","matchCriteriaId":"34DF3B5E-F17F-49B4-9DC8-06749F3C9CC3"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*","matchCriteriaId":"C6109348-BC79-4ED3-8D41-EA546A540C79"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*","matchCriteriaId":"C9392D35-7BF5-48E9-879B-BBDE9A9E9AB9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:internet_explorer:7.0:*:*:*:*:*:*:*","matchCriteriaId":"6BC71FD8-D385-4507-BD14-B75FDD4C79E6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:itanium:*","matchCriteriaId":"9F98AE07-3995-4501-9804-FEA5A87ADFAD"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:x64:*","matchCriteriaId":"A7371547-290D-4D0D-B98D-CA28B4D2E8B0"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*","matchCriteriaId":"32623D48-7000-4C7D-823F-7D2A9841D88C"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*","matchCriteriaId":"5F422A8C-2C4E-42C8-B420-E0728037E15C"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:-:*:*:*:-:*:x64:*","matchCriteriaId":"E20CAA29-B5A9-4D99-9775-4945469C3A9A"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:-:*:x64:*","matchCriteriaId":"889F98DA-4266-470B-AE3D-480BDF6BADB9"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:-:*:x64:*","matchCriteriaId":"08627673-D381-4481-BD04-F56599C43105"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:*:*","matchCriteriaId":"34DF3B5E-F17F-49B4-9DC8-06749F3C9CC3"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*","matchCriteriaId":"C6109348-BC79-4ED3-8D41-EA546A540C79"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*","matchCriteriaId":"C9392D35-7BF5-48E9-879B-BBDE9A9E9AB9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*","matchCriteriaId":"A52E757F-9B41-43B4-9D67-3FEDACA71283"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_7:-:*:*:*:*:*:*:*","matchCriteriaId":"E33796DB-4523-4F04-B564-ADF030553D51"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:x64:*","matchCriteriaId":"A7371547-290D-4D0D-B98D-CA28B4D2E8B0"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*","matchCriteriaId":"32623D48-7000-4C7D-823F-7D2A9841D88C"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*","matchCriteriaId":"5F422A8C-2C4E-42C8-B420-E0728037E15C"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:itanium:*","matchCriteriaId":"B20DD263-5A62-4CB1-BD47-D1F9A6C67E08"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:x64:*","matchCriteriaId":"B7674920-AE12-4A25-BE57-34AEDDA74D76"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:-:*:*:*:-:*:x64:*","matchCriteriaId":"E20CAA29-B5A9-4D99-9775-4945469C3A9A"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:-:*:x64:*","matchCriteriaId":"889F98DA-4266-470B-AE3D-480BDF6BADB9"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:-:*:x64:*","matchCriteriaId":"08627673-D381-4481-BD04-F56599C43105"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:*:*","matchCriteriaId":"34DF3B5E-F17F-49B4-9DC8-06749F3C9CC3"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*","matchCriteriaId":"C6109348-BC79-4ED3-8D41-EA546A540C79"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*","matchCriteriaId":"C9392D35-7BF5-48E9-879B-BBDE9A9E9AB9"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2010","CveId":"249","Ordinal":"1","Title":"CVE-2010-0249","CVE":"CVE-2010-0249","Year":"2010"},"notes":[{"CveYear":"2010","CveId":"249","Ordinal":"1","NoteData":"Use-after-free vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 on Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object, related to incorrectly initialized memory and improper handling of objects in memory, as exploited in the wild in December 2009 and January 2010 during Operation Aurora, aka \"HTML Object Memory Corruption Vulnerability.\"","Type":"Description","Title":"CVE-2010-0249"},{"CveYear":"2010","CveId":"249","Ordinal":"2","NoteData":"2010-01-15","Type":"Other","Title":"Published"},{"CveYear":"2010","CveId":"249","Ordinal":"3","NoteData":"2018-10-12","Type":"Other","Title":"Modified"}]}}}