Computer Security
[EN] securityvulns.ru no-pyccku


Multiple Microsoft Internet Explorer security vulnerabilities
updated since 22.03.2006
Published:27.05.2006
Source:
SecurityVulns ID:5923
Type:client
Threat Level:
9/10
Description:Jump to ininitialized function pointer by referencing unspupported object's method (createTextRange() for checkbox). Potentially can be used for code execution and hidden malware installation. Memory corruption on uninitialized event handlers. HTA code execution. HTML parsing memory corrution. COM objects memory corruption. Crossite scripting.
Affected:MICROSOFT : Internet Explorer 6.0
Original documentdocumentThomas Waldegger, [BuHa-Security] DoS Vulnerability in MS IE 6 SP2 (27.05.2006)
 documentThomas Waldegger, [BuHa-Security] MS06-013: HTML Tag Memory Corruption Vulnerability in MS IE 6 SP2 (27.05.2006)
 documentThomas Waldegger, [BuHa-Security] Multiple Vulnerabilities in MS IE 6.0 SP2 (13.04.2006)
 documentSowhat ., [Full-disclosure] Microsoft Internet Explorer DBCS Remote Memory Corruption Vulnerability (12.04.2006)
 documentX-FORCE, ISS Protection Bried: ie_patch_ms_06-13 (12.04.2006)
 documentSowhat ., Microsoft Internet Explorer DBCS Remote Memory Corruption Vulnerability (12.04.2006)
 documentCERT, US-CERT Technical Cyber Security Alert TA06-101A -- Microsoft Windows and Internet Explorer Vulnerabilities (12.04.2006)
 documentMICROSOFT, Microsoft Security Bulletin MS06-013 Cumulative Security Update for Internet Explorer (912812) (11.04.2006)
 documentDetermina Secure, Determina Fix for CVE-2006-1359 (Zero Day MS Internet Explorer Remote "CreateTextRange()" Code Execution) (29.03.2006)
 documentEEYE, [Full-disclosure] EEYE: Temporary workaround for IE createTextRange vulnerability (28.03.2006)
 documentH D Moore, [Full-disclosure] Fun with DHTML (23.03.2006)
 documentSECUNIA, [SA18680] Microsoft Internet Explorer "createTextRange()" Code Execution (22.03.2006)
 documentComputer Terrorism (UK) :: Incident Response Centre, [Full-disclosure] Microsoft Internet Explorer (mshtml.dll) - Remote Code Execution (22.03.2006)
 documentStelian Ene, [Full-disclosure] IE crash (22.03.2006)
Files:Exploits Internet Explorer uninitialized object action function pointer vulnerability (crash)
 This module exploits a vulnerability in Internet Explorer's setTextRange on a checkbox
 Internet Explorer Remote Code Execution Exploit v 0.1
 Internet Explorer "createTextRang" Download Shellcoded Exploit
 Exploits HTML Tag Memory Corruption Vulnerability in MS IE 6 SP2
 Common DHTML implementation flaws via method and property fuzzing
 Microsoft Security Bulletin MS06-013 Cumulative Security Update for Internet Explorer (912812)
 Temporary workaround for IE createTextRange vulnerability
 Determina Fix for CVE-2006-1359

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod