[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247862

 
 

909

 
 

194603

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-1359Date: (C)2006-03-22   (M)2023-12-22


Microsoft Internet Explorer 6 and 7 Beta 2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a certain createTextRange call on a checkbox object, which results in a dereference of an invalid table pointer.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1015812
BID-17196
SECUNIA-18680
http://archives.neohapsis.com/archives/fulldisclosure/2006-03/1434.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-03/1427.html
http://www.securityfocus.com/archive/1/428583/100/0/threaded
http://www.securityfocus.com/archive/1/428600/100/0/threaded
http://archives.neohapsis.com/archives/fulldisclosure/2006-03/1662.html
http://www.securityfocus.com/archive/1/429124/30/6120/threaded
http://www.securityfocus.com/archive/1/429088/100/0/threaded
OSVDB-24050
ADV-2006-1050
ADV-2006-1318
MS06-013
Q-154
TA06-101A
VU#876678
http://secunia.com/secunia_research/2006-7/advisory/
http://www.computerterrorism.com/research/ct22-03-2006
http://www.microsoft.com/technet/security/advisory/917077.mspx
ie-createtextrange-command-execution(25379)
oval:org.mitre.oval:def:1178
oval:org.mitre.oval:def:1657
oval:org.mitre.oval:def:1678
oval:org.mitre.oval:def:1702
oval:org.mitre.oval:def:985

CWE    1
CWE-94
OVAL    5
oval:org.mitre.oval:def:1702
oval:org.mitre.oval:def:985
oval:org.mitre.oval:def:1178
oval:org.mitre.oval:def:1657
...

© SecPod Technologies