Microsoft Internet Explorer HTML Object Memory Corruption Exploit (MS10-002)

This module exploits a use-after-free vulnerability in the MSHTML component in Internet Explorer. The specific error ocurrs due to the way Internet Explorer handles objects in memory. It is possible to use a pointer in CTableRowCellsCollectionCacheItem::GetNext after it gets freed and get remote code execution. This vulnerability was one of the 2012's Pwn2Own challenges.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2010-0248
Product Version: 
12.3
Released Date: 
Wednesday, June 27, 2012 - 00:00