Back to search
CVE-2005-0055
Published: Feb 8, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Internet Explorer 5.01, 5.5, and 6 does not properly validate buffers when handling certain DHTML methods including the createControlRange Javascript function, which allows remote attackers to execute arbitrary code, aka the "DHTML Method Heap Memory Corruption Vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
MS05-014
vendor-advisory
x_refsource_MS
oval:org.mitre.oval:def:3137
vdb-entry
signature
x_refsource_OVAL
VU#843771
third-party-advisory
x_refsource_CERT-VN
TA05-039A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:1005
vdb-entry
signature
x_refsource_OVAL
ie-cdf-execute-code(19137)
vdb-entry
x_refsource_XF
oval:org.mitre.oval:def:3910
vdb-entry
signature
x_refsource_OVAL
11165
third-party-advisory
x_refsource_SECUNIA
http://secunia.com/secunia_research/2004-12/advisory/
x_refsource_MISC
1013125
vdb-entry
x_refsource_SECTRACK
oval:org.mitre.oval:def:710
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:2692
vdb-entry
signature
x_refsource_OVAL
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now