CVE-2006-4193
CVE-2006-4193
Microsoft Internet Explorer 6.0 SP1 and possibly other versions allows remote attackers to cause a denial of service and possibly execute arbitrary code by instantiating COM objects as ActiveX controls, including (1) imskdic.dll (Microsoft IME), (2) chtskdic.dll (Microsoft IME), and (3) msoe.dll (Outlook), which leads to memory corruption. NOTE: it is not certain whether the issue is in Internet Explorer or the individual DLL files.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 2
exploitdbwww.exploit-db.com/exploits/28387não verificadoexploitdbwww.exploit-db.com/exploits/28389não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://securityreason.com/securityalert/1402https://exchange.xforce.ibmcloud.com/vulnerabilities/28436https://exchange.xforce.ibmcloud.com/vulnerabilities/28438https://exchange.xforce.ibmcloud.com/vulnerabilities/28439http://www.osvdb.org/29345http://www.osvdb.org/29346http://www.osvdb.org/29347http://www.securityfocus.com/archive/1/443290/100/0/threadedhttp://www.securityfocus.com/archive/1/443295/100/0/threadedhttp://www.securityfocus.com/archive/1/443299/100/0/threadedhttp://www.securityfocus.com/bid/19521http://www.securityfocus.com/bid/19529