What is the severity of CVE-2006-4495?

CVE-2006-4495 has been classified as a critical vulnerability due to its potential to cause a denial of service and execute arbitrary code.

How do I fix CVE-2006-4495?

Fixing CVE-2006-4495 requires applying the official security patches released by Microsoft for affected versions of Internet Explorer and Windows.

Which versions of Microsoft software are affected by CVE-2006-4495?

CVE-2006-4495 affects Microsoft Internet Explorer 6.0 SP1 and various versions of Windows 2003 Server including 2000 Server and its service packs.

What are the potential impacts of CVE-2006-4495?

Exploitation of CVE-2006-4495 may lead to memory corruption allowing attackers to crash the browser or execute malicious code.

Is CVE-2006-4495 still a threat today?

While CVE-2006-4495 was identified many years ago, it may still pose a risk to legacy systems that remain unpatched and in use.

Vulnerability/
CVE-2006-4495

high

7.5

CWE

NVD-CWE-Other

31/8/2006

7/8/2024

CVE-2006-4495

First published: Thu Aug 31 2006(Updated: )

Microsoft Internet Explorer allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Windows 2000 ActiveX COM Objects including (1) ciodm.dll, (2) myinfo.dll, (3) msdxm.ocx, and (4) creator.dll.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Microsoft Internet Explorer	=6.0-sp1
Microsoft Windows Server 2003	=professional-sp3
Microsoft Windows Server 2003	=datacenter_server-sp2
Microsoft Windows Server 2003	=professional-sp2
Microsoft Windows Server 2003	=professional
Microsoft Windows Server 2003	=2000_server-sp2
Microsoft Windows Server 2003	=advanced_server-sp2
Microsoft Windows Server 2003	=advanced_server-sp3
Microsoft Windows Server 2003	=2000_server-sp3
Microsoft Windows Server 2003	=2000_server
Microsoft Windows Server 2003	=advanced_server-sp1
Microsoft Windows Server 2003	=datacenter_server
Microsoft Windows Server 2003	=datacenter_server-sp1
Microsoft Windows Server 2003	=datacenter_server-sp3
Microsoft Windows Server 2003	=professional-sp1
Microsoft Windows Server 2003	=advanced_server
Microsoft Windows Server 2003	=advanced_server-sp4
Microsoft Windows Server 2003	=datacenter_server-sp4
Microsoft Windows Server 2003	=professional-sp4
Microsoft Windows Server 2003	=2000_server-sp1
Microsoft Windows Server 2003	=2000_server-sp4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-4495?
CVE-2006-4495 has been classified as a critical vulnerability due to its potential to cause a denial of service and execute arbitrary code.
How do I fix CVE-2006-4495?
Fixing CVE-2006-4495 requires applying the official security patches released by Microsoft for affected versions of Internet Explorer and Windows.
Which versions of Microsoft software are affected by CVE-2006-4495?
CVE-2006-4495 affects Microsoft Internet Explorer 6.0 SP1 and various versions of Windows 2003 Server including 2000 Server and its service packs.
What are the potential impacts of CVE-2006-4495?
Exploitation of CVE-2006-4495 may lead to memory corruption allowing attackers to crash the browser or execute malicious code.
Is CVE-2006-4495 still a threat today?
While CVE-2006-4495 was identified many years ago, it may still pose a risk to legacy systems that remain unpatched and in use.

agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/weakness
agent/last-modified-date
agent/references
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/microsoft
canonical/microsoft internet explorer
version/microsoft internet explorer/6.0-sp1
canonical/microsoft windows server 2003
version/microsoft windows server 2003/professional-sp3
version/microsoft windows server 2003/datacenter_server-sp2
version/microsoft windows server 2003/professional-sp2
version/microsoft windows server 2003/professional
version/microsoft windows server 2003/2000_server-sp2
version/microsoft windows server 2003/advanced_server-sp2
version/microsoft windows server 2003/advanced_server-sp3
version/microsoft windows server 2003/2000_server-sp3
version/microsoft windows server 2003/2000_server
version/microsoft windows server 2003/advanced_server-sp1
version/microsoft windows server 2003/datacenter_server
version/microsoft windows server 2003/datacenter_server-sp1
version/microsoft windows server 2003/datacenter_server-sp3
version/microsoft windows server 2003/professional-sp1
version/microsoft windows server 2003/advanced_server
version/microsoft windows server 2003/advanced_server-sp4
version/microsoft windows server 2003/datacenter_server-sp4
version/microsoft windows server 2003/professional-sp4
version/microsoft windows server 2003/2000_server-sp1
version/microsoft windows server 2003/2000_server-sp4