Buffer overflow while parsing document with embedded non-ActiveX <object> elements.
vulners.com/securityvulns/securityvulns:doc:9000
vulners.com/securityvulns/securityvulns:doc:9144