| CNNVD-ID编号 | CNNVD-201006-100 |
| CVE编号 | CVE-2010-1261 |
| 发布时间 | 2010-06-11 |
| 更新时间 | 2010-06-17 |
| 漏洞类型 | 代码注入 |
| 漏洞来源 | Chris Rohlf of Matasano Security |
| 危险等级 | 超危 |
| 威胁类型 | 远程 |
| 厂 商 | microsoft |
Internet Explorer是Windows操作系统中默认捆绑的web浏览器。
Microsoft Internet Explorer的IE8 Developer Toolbar存在漏洞,用户辅助的远程攻击者可利用访问(1)未正确初始化,或(2)已被删除的对象执行任意代码,导致内存被破坏,即\"未初始化内存破坏漏洞\"。
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Microsoft Internet Explorer 8
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Vista x64 Edition (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=3076d1ea-7716
-4b54-8ec4-660374f14dcb
Microsoft Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 x64 Edition (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=87e13912-f861
-4985-ab9d-260a5898dfd4
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 R2 for Itanium-based Syste
http://www.microsoft.com/downloads/details.aspx?familyid=52c04d85-911f
-47be-852e-c9bb4934744d
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 x64 Edition (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=cf84469b-ce6d
-45e8-8336-7b4501c6cf91
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 R2 x64 Edition (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=7c4ff5ae-eadd
-431e-b982-d5f179efb8c0
Microsoft Cumulative Security Update for Internet Explorer 8 for Windows XP x64 Edition (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=37cd7533-ddad-4d0d-85c0-1491308e1ff8
Microsoft Cumulative Security Update for Internet Explorer 8 for Windows XP (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=9cff9aba-7743-4c33-87c7-37d06ed60a21
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows 7 x64 Edition (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=5cfc5776-0c6b
-4092-bc98-94df077c60d8
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Server 2008 (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=24ed08c7-a474
-4458-8269-3b9de5e22385
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows 7 (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=5c835885-9375
-4882-a92f-4d4cfcacc005
Microsoft Cumulative Security Update for Internet Explorer 8 in Windows Vista (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=640f9216-3e99
-46b6-aac8-cd051eedad3c
Microsoft Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 (KB982381)
http://www.microsoft.com/downloads/details.aspx?familyid=ebab6101-fcf1
-4842-b22d-893a20c1c10f
来源: US-CERT
名称: TA10-159B
来源: MS
名称: MS10-035
链接:http://www.microsoft.com/technet/security/bulletin/ms10-035.mspx