COM Object Instantiation Memory Corruption Vulnerability
Microsoft Internet Explorer 5.01 and 6 does not properly handle uninitialized COM objects which allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code as demonstrated by the Nth function in the DirectAnimation.DATuple ActiveX control aka "COM Object Instantiation Memory Corruption Vulnerability."
- Microsoft Windows XP
- Microsoft Windows Server 2003
- Microsoft Windows 2000
- Microsoft Internet Explorer