F-Secure
Tools
Internet Explorer Cumulative Security Update
| Report ID: | SA201006426 |
| Source: | F-Secure |
| Date of Discovery: | 31.03.2010 |
| Criticality: | Critical |
| Affects: | Internet Explorer 5.01 Internet Explorer 6 Service Pack 1 Internet Explorer 6 Internet Explorer 7 Internet Explorer 8 Internet Explorer 6 (Windows servers) Internet Explorer 8 (Windows servers) |
| Compromise From: | From remote |
| Compromise Type: | Remote code execution |
Summary
This cumulative security update for the Microsoft Internet Explorer web browser addresses 10 privately and publicly reported vulnerabilities, the most severe of which could result in remote code execution. This update replaces the MS10-002 update.
Detailed Description
10 vulnerabilities are addressed in the MS10-018 patch, the most serious of which can result in the remote execution of code in the affected machine, if the user views a specially crafted web page. Version 5.01 to 8.0 of Internet Explorer are all affected, to varying degrees.
Solution
Apply patches. Download the correct patch for your system from:
Original Reference
Microsoft Security Bulletin: http://www.microsoft.com/technet/security/bulletin/ms10-018.mspx
CVE Reference
CVE-2010-0267
CVE-2010-0488
CVE-2010-0489
CVE-2010-0490
CVE-2010-0491
CVE-2010-0492
CVE-2010-0494
CVE-2010-0805
CVE-2010-0806
CVE-2010-0807
CVE-2010-0488
CVE-2010-0489
CVE-2010-0490
CVE-2010-0491
CVE-2010-0492
CVE-2010-0494
CVE-2010-0805
CVE-2010-0806
CVE-2010-0807