CVE-2010-0805

Name: CVE-2010-0805
Creator: NVD / NIST
Published: 2010-03-31T19:30:00.577+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 80.60%

Last modified Jun 16, 2026

CVE-2010-0805 is a vulnerability of currently unknown severity. The Tabular Data Control (TDC) ActiveX control in Microsoft Internet Explorer 5.01 SP4, 6 on Windows XP SP2 and SP3, and 6 SP1 allows remote attackers to execute arbitrary code via a long URL (DataURL parameter) that triggers memory corruption in the CTDCCtl::SecurityCHeckDataURL function, aka "Memory Corruption Vulnerability.". EPSS estimates a 80.60% chance of exploitation in the next 30 days.

Description

The Tabular Data Control (TDC) ActiveX control in Microsoft Internet Explorer 5.01 SP4, 6 on Windows XP SP2 and SP3, and 6 SP1 allows remote attackers to execute arbitrary code via a long URL (DataURL parameter) that triggers memory corruption in the CTDCCtl::SecurityCHeckDataURL function, aka "Memory Corruption Vulnerability."

Metrics

EPSS Probability

80.60%

99.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-94

Affected Software

Vendor	Product	Versions	Update
Microsoft	Internet Explorer	5.01	Sp4
Microsoft	Internet Explorer	6	Sp1
Microsoft	Windows 2000	All versions	Sp4
Microsoft	Windows Xp	All versions	Sp2

References

Timeline

Published: Mar 31, 2010
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2010-0805?

How severe is CVE-2010-0805?

Severity scoring for CVE-2010-0805 is pending analysis. The EPSS model estimates a 80.60% probability of exploitation in the next 30 days.

How do I fix CVE-2010-0805?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2010-0805?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST