Vulnerabilities > CVE-2006-4193 - Unspecified vulnerability in Microsoft IE and Internet Explorer

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
microsoft
exploit available
NVD
Published: 2006-08-17
Updated: 2021-07-23

Summary

Microsoft Internet Explorer 6.0 SP1 and possibly other versions allows remote attackers to cause a denial of service and possibly execute arbitrary code by instantiating COM objects as ActiveX controls, including (1) imskdic.dll (Microsoft IME), (2) chtskdic.dll (Microsoft IME), and (3) msoe.dll (Outlook), which leads to memory corruption. NOTE: it is not certain whether the issue is in Internet Explorer or the individual DLL files.

Vulnerable Configurations

Part Description Count
Application
Microsoft
3

Exploit-Db

  • descriptionMicrosoft Internet Explorer 6.0 IMSKDIC.DLL Denial Of Service Vulnerability. CVE-2006-4193. Dos exploit for windows platform
    idEDB-ID:28387
    last seen2016-02-03
    modified2006-08-15
    published2006-08-15
    reporternop
    sourcehttps://www.exploit-db.com/download/28387/
    titleMicrosoft Internet Explorer 6.0 IMSKDIC.DLL Denial of Service Vulnerability
  • descriptionMicrosoft Internet Explorer 6.0 MSOE.DLL Denial Of Service Vulnerability. CVE-2006-4193. Dos exploit for windows platform
    idEDB-ID:28389
    last seen2016-02-03
    modified2006-08-15
    published2006-08-15
    reporternop
    sourcehttps://www.exploit-db.com/download/28389/
    titleMicrosoft Internet Explorer 6.0 MSOE.DLL Denial of Service Vulnerability

References