COM Object Instantiation Memory Corruption VulnerabilityID: oval:org.mitre.oval:def:719 | Date: (C)2006-08-11 (M)2022-03-31 |
Class: VULNERABILITY | Family: windows |
Microsoft Internet Explorer 5.01 and 6 does not properly handle uninitialized COM objects, which allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code, as demonstrated by the Nth function in the DirectAnimation.DATuple ActiveX control, aka "COM Object Instantiation Memory Corruption Vulnerability."
Platform: |
Microsoft Windows 2000 |
Microsoft Windows XP |
Microsoft Windows Server 2003 |
Product: |
Microsoft Internet Explorer |