Vulnerabilities > CVE-2006-3427 - Unspecified vulnerability in Microsoft Internet Explorer 6.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
exploit available
Summary
Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (crash) by declaring the sourceURL attribute on an uninitialized DirectAnimation.StructuredGraphicsControl ActiveX Object, which triggers a null dereference.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Exploit-Db
| description | Microsoft Internet Explorer 5.0.1/6.0 Structured Graphics Control Denial Of Service Vulnerability. CVE-2006-3427. Dos exploit for windows platform |
| id | EDB-ID:28169 |
| last seen | 2016-02-03 |
| modified | 2006-07-06 |
| published | 2006-07-06 |
| reporter | hdm |
| source | https://www.exploit-db.com/download/28169/ |
| title | Microsoft Internet Explorer 5.0.1/6.0 Structured Graphics Control Denial of Service Vulnerability |
References
- http://browserfun.blogspot.com/2006/07/mobb-6-structuredgraphicscontrol.html
- http://browserfun.blogspot.com/2006/07/mobb-6-structuredgraphicscontrol.html
- http://www.osvdb.org/26839
- http://www.osvdb.org/26839
- http://www.securityfocus.com/bid/18855
- http://www.securityfocus.com/bid/18855
- http://www.vupen.com/english/advisories/2006/2687
- http://www.vupen.com/english/advisories/2006/2687
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27565
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27565