CVE-2006-5581
First published: Tue Dec 12 2006(Updated: )
Unspecified vulnerability in Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code via certain DHTML script functions, such as normalize, and "incorrectly created elements" that trigger memory corruption, aka "DHTML Script Function Memory Corruption Vulnerability."
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Internet Explorer | <=6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.zerodayinitiative.com/advisories/ZDI-06-048.html
- http://www.kb.cert.org/vuls/id/347448
- http://securitytracker.com/id?1017373
- http://secunia.com/advisories/23288
- http://www.symantec.com/security_response/writeup.jsp?docid=2006-121212-1201-99
- http://www.securityfocus.com/bid/21546
- http://www.osvdb.org/30814
- http://www.us-cert.gov/cas/techalerts/TA06-346A.html
- http://www.vupen.com/english/advisories/2006/4966
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A116
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-072
- http://www.securityfocus.com/archive/1/454969/100/200/threaded
- http://www.securityfocus.com/archive/1/454210/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/weakness
- agent/tags
- agent/type
- agent/event
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- vendor/microsoft
- canonical/microsoft internet explorer
- version/microsoft internet explorer/6