CVE-2006-4777
CVE-2006-4777
Heap-based buffer overflow in the DirectAnimation Path Control (DirectAnimation.PathControl) COM object (daxctle.ocx) for Internet Explorer 6.0 SP1, on Chinese and possibly other Windows distributions, allows remote attackers to execute arbitrary code via unknown manipulations in arguments to the KeyFrame method, possibly related to an integer overflow, as demonstrated by daxctle2, and a different vulnerability than CVE-2006-4446.
Productos afectados
n/a · n/aPoCs públicas encontradas — 3
githubgithub.com/Mario1234/js-driveby-download-CVE-2006-4777★ 0exploitdbwww.exploit-db.com/exploits/2358no verificadoexploitdbwww.exploit-db.com/exploits/16506no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-067http://secunia.com/advisories/21910http://securityreason.com/securityalert/1577http://securitytracker.com/id?1016854https://exchange.xforce.ibmcloud.com/vulnerabilities/28942https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1103http://www.kb.cert.org/vuls/id/377369http://www.microsoft.com/technet/security/advisory/925444.mspxhttp://www.osvdb.org/28842http://www.securityfocus.com/archive/1/445898/100/0/threadedhttp://www.securityfocus.com/archive/1/446065/100/0/threadedhttp://www.securityfocus.com/archive/1/446084/100/0/threaded