KEV 2010

Internet Explorer — Use-After-Free via Deleted HTML Object Enables RCE; Operation Aurora Chinese APT Campaign Targeting Google, Adobe, and Others; Emergency MS10-002 January 2010

Internet Explorer 6/7 — Use-After-Free in iepeers.dll Peer Objects Enables Drive-By RCE; Zero-Day Before Emergency MS10-018 March 2010

Microsoft Internet Explorer — Use-After-Free in CSS Handling Enables Remote Code Execution; Exploited as Zero-Day Before Patch

Linux Kernel RDS — Improper Input Validation in Reliable Datagram Sockets Enables Local Privilege Escalation to Root

Microsoft Windows — Shell .LNK Shortcut Parsing Zero-Day Used by Stuxnet Worm to Spread via USB and Execute Code on Icon Display

Adobe Flash Player — Memory Corruption Zero-Day Enables Code Execution via Malicious SWF in Browser or PDF

Microsoft PowerPoint — Crafted Presentation File Triggers Buffer Overflow and Remote Code Execution via MS10-088

Adobe Acrobat and Reader — CoolType.dll SING Table Stack Overflow Enables Code Execution via Malicious PDF; Exploited as Zero-Day

Red Hat JBoss — Web-Console HTTP Verb Bypass Exposes Sensitive Server Information to Unauthenticated Attackers

Microsoft Windows win32k.sys — RtlQueryRegistryValues Stack Overflow Enables Local Privilege Escalation and UAC Bypass

Exim MTA — Alternate Configuration File Directive Enables Privilege Escalation from Exim User to Root

Adobe Reader and Acrobat — Unspecified Vulnerability Enables Code Execution; Exploited in Ransomware Delivery Campaigns

Microsoft Windows NTVDM — Improper BIOS Call Validation in 16-bit App Support Enables Local Privilege Escalation

Microsoft Office RTF — pFragments Property Stack Overflow Enables Remote Code Execution; Exploited as Zero-Day in Targeted Attacks

Cisco IOS XR — Malformed BGP UPDATE Message Causes Routing Process Crash; Second BGP DoS Vulnerability Affecting Carrier Infrastructure

Red Hat JBoss Seam 2 — Expression Language Injection via URL Parameters Enables Remote Code Execution on JBoss EAP 4.3