mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
899 B
899 B
CVE-2006-1992
Description
mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service (crash) via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of code execution was originally theorized, but Microsoft has stated that this issue is non-exploitable.
POC
Reference
- http://securityreason.com/securityalert/781
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-021
Github
No PoCs found on GitHub currently.