Vulnerabilities > CVE-2006-5162 - Unspecified vulnerability in Microsoft Internet Explorer

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
microsoft
exploit available

Summary

wininet.dll in Microsoft Internet Explorer 6.0 SP2 and earlier allows remote attackers to cause a denial of service (unhandled exception and crash) via a long Content-Type header, which triggers a stack overflow.

Exploit-Db

descriptionMS Internet Explorer 6 (Content-Type) Stack Overflow Crash. CVE-2006-5162. Dos exploit for windows platform
fileexploits/windows/dos/2039.pl
idEDB-ID:2039
last seen2016-01-31
modified2006-07-20
platformwindows
port
published2006-07-20
reporterFirestorm
sourcehttps://www.exploit-db.com/download/2039/
titleMicrosoft Internet Explorer 6 Content-Type Stack Overflow Crash
typedos