Microsoft Internet Explorer 5.01 and 6 does not properly handle uninitialized COM objects, which allows remote malicious users to cause a denial of service (memory corruption) and possibly execute arbitrary code, as demonstrated by the Nth function in the DirectAnimation.DATuple ActiveX control, aka "COM Object Instantiation Memory Corruption Vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet explorer 5.0.1 |
||
microsoft internet explorer 6.0 |
||
microsoft ie 6.0 |