Vulnerabilities > CVE-2006-3510 - Unspecified vulnerability in Microsoft IE 6.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
exploit available
Summary
The Remote Data Service Object (RDS.DataControl) in Microsoft Internet Explorer 6 on Windows 2000 allows remote attackers to cause a denial of service (crash) via a series of operations that result in an invalid length calculation when using SysAllocStringLen, then triggers a buffer over-read.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | Microsoft Internet Explorer 6 RDS.DataControl Denial of Service Vulnerability. CVE-2006-3510. Dos exploit for windows platform |
| id | EDB-ID:28194 |
| last seen | 2016-02-03 |
| modified | 2006-07-08 |
| published | 2006-07-08 |
| reporter | hdm |
| source | https://www.exploit-db.com/download/28194/ |
| title | Microsoft Internet Explorer 6 RDS.DataControl Denial of Service Vulnerability |
References
- http://browserfun.blogspot.com/2006/07/mobb-8-rdsdatacontrol-url.html
- http://browserfun.blogspot.com/2006/07/mobb-8-rdsdatacontrol-url.html
- http://www.osvdb.org/26955
- http://www.osvdb.org/26955
- http://www.securityfocus.com/bid/18900
- http://www.securityfocus.com/bid/18900
- http://www.vupen.com/english/advisories/2006/2718
- http://www.vupen.com/english/advisories/2006/2718
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27621
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27621