Vulnerability in N/a
CVE-2006-1245
Buffer overflow in mshtml.dll in Microsoft Internet Explorer 6.0.2900.2180, and probably other versions, allows remote attackers to execute arbitrary code via an HTML tag with a large number of script action handlers such as onload and onm…
EPSS: 0.697 (98.7th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 1015794 (vdb-entry, x_refsource_SECTRACK)
- 20061205 Re: MS Internet Explorer 6.0 (mshtml.dll) Denial of Service Exploit (mailing-list, x_refsource_BUGTRAQ)
- 18957 (x_refsource_SECUNIA, third-party-advisory)
- oval:org.mitre.oval:def:1569 (signature, x_refsource_OVAL, vdb-entry)
- 19269 (x_refsource_SECUNIA, third-party-advisory)
- oval:org.mitre.oval:def:1451 (signature, x_refsource_OVAL, vdb-entry)
- 20060325 Re: [optimized PoC] Remote overflow in MSIE script action handlers (mshtml.dll) (mailing-list, x_refsource_BUGTRAQ)
- TA06-101A (x_refsource_CERT, third-party-advisory)
- oval:org.mitre.oval:def:1632 (signature, x_refsource_OVAL, vdb-entry)
- ie-mshtml-bo(25292) (vdb-entry, x_refsource_XF)