Computer Security
[EN] securityvulns.ru no-pyccku


Multiple Microsoft Internet Explorer security vulnerabilities
updated since 08.08.2006
Published:13.09.2006
Source:
SecurityVulns ID:6465
Type:client
Threat Level:
9/10
Description:Crossite scripting, crossite information access, FTP commands injection. Vulnerabilities can be used for hidden malware installation.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
Original documentdocumentEEYE, [EEYEB-20080824] Internet Explorer Compressed Content URL Heap Overflow Vulnerability #2 (13.09.2006)
 documentNSFOCUS, NSFOCUS SA2006-08 : Microsoft IE6 urlmon.dll Long URL Buffer Overflow Vulnerability (28.08.2006)
 documentEEYE, [Full-disclosure] EEYE: Internet Explorer Compressed Content URL Heap Overflow Vulnerability (25.08.2006)
 documentMICROSOFT, Microsoft Security Advisory (923762) Microsoft Security Advisory (923762): Long URLs to sites using HTTP 1.1 and compression Could Cause Internet Explorer 6 Service Pack 1 to Unexpectedly Exit (23.08.2006)
 documentEEYE, EEYE:ALERT: MS06-042 Related Internet Explorer 'Crash' is Exploitable (23.08.2006)
 documentTSRT_(at)_3com.com, [Full-disclosure] TSRT-06-09: Microsoft DirectAnimation COM Object Memory Corruption Vulnerability (09.08.2006)
 documentTSRT_(at)_3com.com, [Full-disclosure] TSRT-06-08: Microsoft Internet Help COM Object Memory Corruption Vulnerability (09.08.2006)
 documentZDI, ZDI-06-027: Microsoft Internet Explorer CSS Class Ordering Memory Corruption Vulnerability (09.08.2006)
 documentZDI, ZDI-06-026: Microsoft Internet Explorer Multiple CSS Imports Memory Corruption Vulnerability (09.08.2006)
 documentMICROSOFT, Microsoft Security Bulletin MS06-042 Cumulative Security Update for Internet Explorer (918899) (08.08.2006)
Files:Internet Explorer COM CreateObject Code Execution exploit (metasploit)
 Microsoft Security Bulletin MS06-042 Cumulative Security Update for Internet Explorer (918899)
 Internet Explorer 6 Service Pack 1 unexpectedly exits after you install the 918899 update

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod