QwikSec

Security Database

CVE

CWE

Training

CVE-2010-0806

Published: Mar 10, 2010

Modified: May 21, 2026

PUBLISHED

Description

Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, aka "Uninitialized Memory Corruption Vulnerability."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_OSVDB

third-party-advisory

x_refsource_CERT

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_CERT

vendor-advisory

x_refsource_MS

http://www.microsoft.com/technet/security/advisory/981374.mspx

x_refsource_CONFIRM

ms-ie-useafterfree-code-execution(56772)

vdb-entry

x_refsource_XF

oval:org.mitre.oval:def:8446

vdb-entry

signature

x_refsource_OVAL

vdb-entry

x_refsource_VUPEN

http://blogs.technet.com/msrc/archive/2010/03/09/security-advisory-981374-released.aspx

x_refsource_CONFIRM

third-party-advisory

x_refsource_CERT-VN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.