Vulnerabilities > CVE-2006-3897 - Out-of-bounds Write vulnerability in Microsoft Internet Explorer 6.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
microsoft
CWE-787
exploit available
NVD
Published: 2006-07-27
Updated: 2021-12-10

Summary

Stack overflow in Microsoft Internet Explorer 6 on Windows 2000 allows remote attackers to cause a denial of service (application crash) by creating an NMSA.ASFSourceMediaDescription.1 ActiveX object with a long dispValue property.

Vulnerable Configurations

Part Description Count
Application
Microsoft
3
OS
Microsoft
1

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionMicrosoft Internet Explorer 6.0 NMSA.ASFSourceMediaDescription Stack Overflow Vulnerability. CVE-2006-3897. Dos exploit for windows platform
idEDB-ID:28259
last seen2016-02-03
modified2006-07-24
published2006-07-24
reporterhdm
sourcehttps://www.exploit-db.com/download/28259/
titleMicrosoft Internet Explorer 6.0 NMSA.ASFSourceMediaDescription Stack Overflow Vulnerability

References