CVE-2010-2118

medium Microsoft
CVSS v3 Base Score
4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS Score
12.9%
Exploitation probability in 30 days
Top 6% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
M
Confidentiality
None
Integrity
None
Availability
P
Published: June 1, 2010 (5826 days ago)
Last Modified: April 29, 2026
Vendor: Microsoft
Source: NVD

Description

Microsoft Internet Explorer 6.0.2900.2180 and 8.0.7600.16385 allows remote attackers to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid news:// URIs.

CWE

CWE-399

Affected Products

microsoft iemicrosoft internet explorer

References

🔗 websecurity.com.ua 🔗 www.securityfocus.com 🔗 websecurity.com.ua 🔗 www.securityfocus.com