← back
CVE-2006-1016

CVE-2006-1016

EPSS 66.7%
Buffer overflow in the IsComponentInstalled method in Internet Explorer 6.0, when used on Windows 2000 before SP4 or Windows XP before SP1, allows remote attackers to execute arbitrary code via JavaScript that calls IsComponentInstalled with a long first argument.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/16549unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://metasploit.com/projects/Framework/exploits.html#ie_iscomponentinstalledhttps://exchange.xforce.ibmcloud.com/vulnerabilities/24923http://www.metasploit.com/projects/Framework/modules/exploits/ie_iscomponentinstalled.pmhttp://www.securityfocus.com/bid/16870