CVE-2010-3886

N/A Unknown
Published: October 08, 2010 Modified: April 29, 2026
View on NVD

Description

The CTimeoutEventList::InsertIntoTimeoutList function in Microsoft mshtml.dll uses a certain pointer value as part of producing Timer ID values for the setTimeout and setInterval methods in VBScript and JScript, which allows remote attackers to obtain sensitive information about the heap memory addresses used by an application, as demonstrated by the Internet Explorer 8 application.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://archives.neohapsis.com/archives/bugtraq/2010-06/0259.html
Source: cve@mitre.org
Broken Link Exploit
http://twitter.com/WisecWisec/statuses/17254776077
Source: cve@mitre.org
Third Party Advisory
http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/20100630
Source: cve@mitre.org
Not Applicable
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11606
Source: cve@mitre.org
Third Party Advisory
http://archives.neohapsis.com/archives/bugtraq/2010-06/0259.html
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link Exploit
http://twitter.com/WisecWisec/statuses/17254776077
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/20100630
Source: af854a3a-2127-422b-91ae-364da2661108
Not Applicable
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11606
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
16.8%
97th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-200

Affected Vendors

microsoft

Related CVEs

CVE-2026-8662 3.3
CVE-2026-8658 6.0
CVE-2026-8666 7.7
CVE-2026-8665 7.7
CVE-2026-8664 6.0