← back
CVE-2006-3729

CVE-2006-3729

EPSS 20.6%
DataSourceControl in Internet Explorer 6 on Windows XP SP2 with Office installed allows remote attackers to cause a denial of service (crash) via a large negative integer argument to the getDataMemberName method of a OWC11.DataSourceControl.11 object, which leads to an integer overflow and a null dereference.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/28244unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://browserfun.blogspot.com/2006/07/mobb-19-datasourcecontrol.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/27803http://www.osvdb.org/27111http://www.securityfocus.com/bid/19069http://www.vupen.com/english/advisories/2006/2883