← back
CVE-2006-3513

CVE-2006-3513

EPSS 22.7%
danim.dll in Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) by accessing the Data property of a DirectAnimation DAUserData object before it is initialized, which triggers a NULL pointer dereference.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/28196unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://browserfun.blogspot.com/2006/07/mobb-9-directanimationdauserdata-data.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/27622http://www.osvdb.org/27013http://www.securityfocus.com/bid/18902http://www.vupen.com/english/advisories/2006/2719