CVE-2006-4777
CVE-2006-4777
Heap-based buffer overflow in the DirectAnimation Path Control (DirectAnimation.PathControl) COM object (daxctle.ocx) for Internet Explorer 6.0 SP1, on Chinese and possibly other Windows distributions, allows remote attackers to execute arbitrary code via unknown manipulations in arguments to the KeyFrame method, possibly related to an integer overflow, as demonstrated by daxctle2, and a different vulnerability than CVE-2006-4446.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 3
githubgithub.com/Mario1234/js-driveby-download-CVE-2006-4777★ 0exploitdbwww.exploit-db.com/exploits/2358não verificadoexploitdbwww.exploit-db.com/exploits/16506não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-067http://secunia.com/advisories/21910http://securityreason.com/securityalert/1577http://securitytracker.com/id?1016854https://exchange.xforce.ibmcloud.com/vulnerabilities/28942https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1103http://www.kb.cert.org/vuls/id/377369http://www.microsoft.com/technet/security/advisory/925444.mspxhttp://www.osvdb.org/28842http://www.securityfocus.com/archive/1/445898/100/0/threadedhttp://www.securityfocus.com/archive/1/446065/100/0/threadedhttp://www.securityfocus.com/archive/1/446084/100/0/threaded