New Search

IE6 DHTML Method Call Memory Corruption (Win2K/XPSP1)

oval:org.mitre.oval:def:1702

Microsoft Internet Explorer 6 and 7 Beta 2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a certain createTextRange call on a checkbox object which results in a dereference of an invalid table pointer.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2006-1359
Product(s):
  • Microsoft Internet Explorer