New Search

DirectAnimation ActiveX Controls Memory Corruption Vulnerability

oval:org.mitre.oval:def:1103

Heap-based buffer overflow in the DirectAnimation Path Control (DirectAnimation.PathControl) COM object (daxctle.ocx) for Internet Explorer 6.0 SP1 on Chinese and possibly other Windows distributions allows remote attackers to execute arbitrary code via unknown manipulations in arguments to the KeyFrame method possibly related to an integer overflow as demonstrated by daxctle2 and a different vulnerability than CVE-2006-4446.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
  • Microsoft Windows Server 2003
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2006-4777
Product(s):
  • Microsoft Internet Explorer