Vulnerability in N/a
CVE-2006-3451
Microsoft Internet Explorer 5 SP4 and 6 do not properly garbage collect when "multiple imports are used on a styleSheets collection" to construct a chain of Cascading Style Sheets (CSS), which allows remote attackers to execute arbitrary c…
EPSS: 0.545 (98.1th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.zerodayinitiative.com/advisories/ZDI-06-026.html (x_refsource_MISC)
- 20060808 ZDI-06-026: Microsoft Internet Explorer Multiple CSS Imports Memory Corruption Vulnerability (mailing-list, x_refsource_BUGTRAQ)
- 1016663 (vdb-entry, x_refsource_SECTRACK)
- MS06-042 (x_refsource_MS, vendor-advisory)
- oval:org.mitre.oval:def:5 (signature, x_refsource_OVAL, vdb-entry)
- VU#262004 (x_refsource_CERT-VN, third-party-advisory)
- 21396 (x_refsource_SECUNIA, third-party-advisory)
- ADV-2006-3212 (vdb-entry, x_refsource_VUPEN)
- 1343 (x_refsource_SREASON, third-party-advisory)
- 27854 (x_refsource_OSVDB, vdb-entry)