The wininet.dll FTP client code in Microsoft Internet Explorer 5.01 and 6 might allow remote malicious users to execute arbitrary code via an FTP server response of a specific length that causes a terminating null byte to be written outside of a buffer, which causes heap corruption.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet_explorer 5.01 |
||
microsoft ie 6.0 |
||
microsoft internet_explorer 6.0 |