3 matches found
Microsoft Internet Explorer OBJECT标签内存破坏漏洞(MS06-021)
Microsoft Internet Explorer是微软发布的非常流行的WEB浏览器。 IE在处理某些异常情况时存在内存破坏漏洞。如果用户受骗访问了恶意的站点的话,IE就会允许对象注册可能无法正确处理某些情况的异常处理器,通过特别序列的嵌套“object” HTML标签触发内存破坏,导致执行任意代码。 这个漏洞是CVE-2006-1992漏洞的一个变种。 Microsoft Internet Explorer 6.0 SP1 Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 5.0 SP4 临时解决方法:...
Memory corruption
Unspecified vulnerability in Internet Explorer 6.0 on Microsoft Windows XP SP2 allows remote attackers to execute arbitrary code via "exceptional conditions" that trigger memory corruption, as demonstrated using an exception handler and nested object tags, a variant of CVE-2006-1992...
CVE-2006-1992
CVE-2006-1992 refers to a memory corruption issue in Internet Explorer triggered by nested HTML OBJECT tags in mshtml.dll (IE 6.x). The vulnerability allowed denial of service via invalid pointer dereferences; Microsoft notes that code execution was theorized but non-exploitable. Related advisori...