CVE-2006-2218
First published: Fri May 05 2006(Updated: )
Unspecified vulnerability in Internet Explorer 6.0 on Microsoft Windows XP SP2 allows remote attackers to execute arbitrary code via "exceptional conditions" that trigger memory corruption, as demonstrated using an exception handler and nested object tags, a variant of CVE-2006-1992.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Internet Explorer | =6.0 | |
| Microsoft Windows XP | =sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/17820
- http://secunia.com/advisories/19762
- http://www.kb.cert.org/vuls/id/338828
- http://www.us-cert.gov/cas/techalerts/TA06-164A.html
- http://securitytracker.com/id?1016291
- http://secunia.com/secunia_research/2006-41/advisory
- http://www.osvdb.org/27475
- http://www.vupen.com/english/advisories/2006/2319
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1961
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1845
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1768
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1765
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1728
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1078
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-021
- http://www.securityfocus.com/archive/1/437099/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2006-2218?
CVE-2006-2218 is classified as a critical vulnerability due to its potential for remote code execution.
How do I fix CVE-2006-2218?
To mitigate CVE-2006-2218, users should update to a patched version of Internet Explorer or upgrade their operating system.
What systems are affected by CVE-2006-2218?
CVE-2006-2218 specifically affects Internet Explorer 6.0 running on Microsoft Windows XP SP2.
What type of attack can exploit CVE-2006-2218?
CVE-2006-2218 can be exploited through crafted web pages that trigger memory corruption, allowing arbitrary code execution.
Is CVE-2006-2218 still relevant today?
Although CVE-2006-2218 is an older vulnerability, systems still using Internet Explorer 6.0 and Windows XP SP2 remain at risk.
- collector/nvd-historical
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/microsoft
- canonical/internet explorer
- version/internet explorer/6.0
- canonical/microsoft windows xp
- version/microsoft windows xp/sp2