Vulnerabilities > CVE-2006-4494 - Unspecified vulnerability in Microsoft Visual Studio 6.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
exploit available
Summary
Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including (1) tcprops.dll, (2) fp30wec.dll, (3) mdt2db.dll, (4) mdt2qd.dll, and (5) vi30aut.dll.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | Microsoft Internet Explorer 6.0 Visual Studio COM Object Instantiation Denial of Service Vulnerability. CVE-2006-4494. Dos exploit for windows platform |
| id | EDB-ID:28401 |
| last seen | 2016-02-03 |
| modified | 2006-08-08 |
| published | 2006-08-08 |
| reporter | XSec |
| source | https://www.exploit-db.com/download/28401/ |
| title | Microsoft Internet Explorer 6.0 Visual Studio COM Object Instantiation Denial of Service Vulnerability |
References
- http://securityreason.com/securityalert/1473
- http://securityreason.com/securityalert/1473
- http://www.securityfocus.com/archive/1/443499/100/100/threaded
- http://www.securityfocus.com/archive/1/443499/100/100/threaded
- http://www.securityfocus.com/bid/19572
- http://www.securityfocus.com/bid/19572
- http://www.xsec.org/index.php?module=releases&act=view&type=1&id=15
- http://www.xsec.org/index.php?module=releases&act=view&type=1&id=15