What is CVE-2006-4777?

CVE-2006-4777 is a vulnerability in N/a. Published 2006-09-14.

Is CVE-2006-4777 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2006-4777

Heap-based buffer overflow in the DirectAnimation Path Control (DirectAnimation.PathControl) COM object (daxctle.ocx) for Internet Explorer 6.0 SP1, on Chinese and possibly other Windows distributions, allows remote attackers to execute ar…

EPSS: 0.876 (99.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

1016854 (vdb-entry, x_refsource_SECTRACK)
21910 (x_refsource_SECUNIA, third-party-advisory)
1577 (x_refsource_SREASON, third-party-advisory)
TA06-318A (x_refsource_CERT, third-party-advisory)
www.microsoft.com/technet/security/advisory/925444.mspx (x_refsource_CONFIRM)
ADV-2006-3593 (vdb-entry, x_refsource_VUPEN)
28842 (x_refsource_OSVDB, vdb-entry)
20060918 Re: IE ActiveX 0day? (mailing-list, x_refsource_BUGTRAQ)
20060915 RE: IE ActiveX 0day? (mailing-list, x_refsource_BUGTRAQ)
VU#377369 (x_refsource_CERT-VN, third-party-advisory)

Frequently asked questions

What is CVE-2006-4777?: CVE-2006-4777 is a vulnerability in N/a. Published 2006-09-14.
Is CVE-2006-4777 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.