Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.6
CVSSv2

CVE-2006-1992

Published: 25/04/2006 Updated: 23/07/2021
CVSS v2 Base Score: 2.6 | Impact Score: 2.9 | Exploitability Score: 4.9
VMScore: 265
Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P
Subscribe to Internet Explorer

Vulnerability Summary

mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote malicious users to cause a denial of service (crash) via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of code execution was originally theorized, but Microsoft has stated that this issue is non-exploitable.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft internet explorer 6.0.2900

Exploits

Exploit DB: Microsoft Internet Explorer 6 - Nested OBJECT Tag Memory Corruption
source: wwwsecurityfocuscom/bid/17658/info Microsoft Internet Explorer is prone to a memory-corruption vulnerability This issue is due to a flaw in the application in handling nested OBJECT tags in HTML content An attacker could exploit this issue via a malicious web page to potentially execute arbitrary code in the context of the curr ...

References

CWE-399http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0616.htmlhttp://secunia.com/advisories/19762http://www.securityfocus.com/bid/17658http://securitytracker.com/id?1016001http://securitytracker.com/id?1016291http://www.osvdb.org/27475http://lists.grok.org.uk/pipermail/full-disclosure/2006-April/045422.htmlhttp://securityreason.com/securityalert/781http://www.vupen.com/english/advisories/2006/1507https://exchange.xforce.ibmcloud.com/vulnerabilities/25978https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-021http://www.securityfocus.com/archive/1/431796/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/27727/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook