Back to search
CVE-2006-1245
Published: Mar 17, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in mshtml.dll in Microsoft Internet Explorer 6.0.2900.2180, and probably other versions, allows remote attackers to execute arbitrary code via an HTML tag with a large number of script action handlers such as onload and onmouseover, as demonstrated using onclick, aka the "Multiple Event Handler Memory Corruption Vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1015794
vdb-entry
x_refsource_SECTRACK
20061205 Re: MS Internet Explorer 6.0 (mshtml.dll) Denial of Service Exploit
mailing-list
x_refsource_BUGTRAQ
18957
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:1569
vdb-entry
signature
x_refsource_OVAL
19269
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:1451
vdb-entry
signature
x_refsource_OVAL
20060325 Re: [optimized PoC] Remote overflow in MSIE script action handlers (mshtml.dll)
mailing-list
x_refsource_BUGTRAQ
TA06-101A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:1632
vdb-entry
signature
x_refsource_OVAL
ie-mshtml-bo(25292)
vdb-entry
x_refsource_XF
17131
vdb-entry
x_refsource_BID
20060316 Remote overflow in MSIE script action handlers (mshtml.dll)
mailing-list
x_refsource_BUGTRAQ
oval:org.mitre.oval:def:1599
vdb-entry
signature
x_refsource_OVAL
20061203 MS Internet Explorer 6.0 (mshtml.dll) Denial of Service Exploit
mailing-list
x_refsource_BUGTRAQ
VU#984473
third-party-advisory
x_refsource_CERT-VN
MS06-013
vendor-advisory
x_refsource_MS
oval:org.mitre.oval:def:1766
vdb-entry
signature
x_refsource_OVAL
ADV-2006-1318
vdb-entry
x_refsource_VUPEN
23964
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now