CVE-2010-2558

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 8

Description A race condition in the way Internet Explorer accesses an object in memory allows remote attackers to execute arbitrary code or cause a denial of service due to memory corruption. This issue can be exploited by constructing a specially crafted Web page. When a user views the Web page, the issue could allow remote code execution, potentially giving an attacker the same user rights as the logged-on user. If the user has administrative rights, the attacker could take complete control of the system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Internet Explorer versions 6 through 8, at the moment, there is no information about a newer version that contains a fix for this vulnerability.