Heap-based buffer overflow in URLMON.DLL in Microsoft Internet Explorer 6 SP1 on Windows 2000 and XP SP1, with versions the MS06-042 patch prior to 20060912, allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a long URL in a GZIP-encoded website that was the target of an HTTP redirect, due to an incomplete fix for CVE-2006-3869.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft ie 6.0 |
||
microsoft windows 2003 server 64-bit |
||
microsoft windows 2003 server itanium |
||
microsoft windows 2003 server sp1 |
||
microsoft windows xp |
||
microsoft windows 2003 server r2 |
||
microsoft windows 2000 |