CVE-2010-0267

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 7

Description A remote code execution issue exists due to improper handling of objects in memory. This allows attackers to execute arbitrary code by accessing an object that was not properly initialized or has been deleted, leading to memory corruption. An attacker could exploit this by constructing a specially crafted Web page. If successfully exploited, an attacker could gain the same user rights as the logged-on user, potentially taking complete control of an affected system if the user has administrative rights.

Recommendations For Microsoft Internet Explorer versions 6 through 7, update to a version that properly handles objects in memory to prevent remote code execution.