7.6 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.777 High
EPSS
Percentile
98.2%
Unspecified vulnerability in Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code via certain DHTML script functions, such as normalize, and “incorrectly created elements” that trigger memory corruption, aka “DHTML Script Function Memory Corruption Vulnerability.”
CPE | Name | Operator | Version |
---|---|---|---|
microsoft:internet_explorer | microsoft internet explorer | le | 6 |
secunia.com/advisories/23288
securitytracker.com/id?1017373
www.kb.cert.org/vuls/id/347448
www.osvdb.org/30814
www.securityfocus.com/archive/1/454210/100/0/threaded
www.securityfocus.com/archive/1/454969/100/200/threaded
www.securityfocus.com/bid/21546
www.symantec.com/security_response/writeup.jsp?docid=2006-121212-1201-99
www.us-cert.gov/cas/techalerts/TA06-346A.html
www.vupen.com/english/advisories/2006/4966
www.zerodayinitiative.com/advisories/ZDI-06-048.html
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-072
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A116