CVE-2006-3638

2006-08-08T23:04:00
ID CVE-2006-3638
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:48:00

Description

Microsoft Internet Explorer 5.01 and 6 does not properly handle uninitialized COM objects, which allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code, as demonstrated by the Nth function in the DirectAnimation.DATuple ActiveX control, aka "COM Object Instantiation Memory Corruption Vulnerability."