Lucene search

[email protected]CVE-2006-1359

HistoryMar 23, 2006 - 12:06 a.m.

CVE-2006-1359

2006-03-2300:06:00

CWE-94

[email protected]

web.nvd.nist.gov

cve-2006-1359

microsoft

internet explorer

denial of service

code execution

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.9%

JSON

Microsoft Internet Explorer 6 and 7 Beta 2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a certain createTextRange call on a checkbox object, which results in a dereference of an invalid table pointer.

CPENameOperatorVersion
microsoft:iemicrosoft ieeq6.0
microsoft:iemicrosoft ieeq7.0
microsoft:internet_explorermicrosoft internet explorereq6.0

CPE	Name	Operator	Version
microsoft:ie	microsoft ie	eq	6.0
microsoft:ie	microsoft ie	eq	7.0
microsoft:internet_explorer	microsoft internet explorer	eq	6.0

References

archives.neohapsis.com/archives/fulldisclosure/2006-03/1427.html

archives.neohapsis.com/archives/fulldisclosure/2006-03/1430.html

archives.neohapsis.com/archives/fulldisclosure/2006-03/1434.html

archives.neohapsis.com/archives/fulldisclosure/2006-03/1662.html

secunia.com/advisories/18680

secunia.com/secunia_research/2006-7/advisory/

securitytracker.com/id?1015812

www.ciac.org/ciac/bulletins/q-154.shtml

www.computerterrorism.com/research/ct22-03-2006

www.kb.cert.org/vuls/id/876678

www.microsoft.com/technet/security/advisory/917077.mspx

www.osvdb.org/24050

www.securityfocus.com/archive/1/428441

www.securityfocus.com/archive/1/428583/100/0/threaded

www.securityfocus.com/archive/1/428600/100/0/threaded

www.securityfocus.com/archive/1/429088/100/0/threaded

www.securityfocus.com/archive/1/429124/30/6120/threaded

www.securityfocus.com/bid/17196

www.us-cert.gov/cas/techalerts/TA06-101A.html

www.vupen.com/english/advisories/2006/1050

www.vupen.com/english/advisories/2006/1318

docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-013

exchange.xforce.ibmcloud.com/vulnerabilities/25379

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1178

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1657

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1678

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1702

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A985

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.9%

JSON

Related for CVE-2006-1359

checkpoint_advisories3 saint4 cert1 packetstorm1 securityvulns3 prion1 cvelist1 nessus1 mskb1