Security Advisory

CVE-2004-0216

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2004-10-16 04:00:00

Last updated 2024-08-08 00:10:03

Assigner mitre

State PUBLISHED

Description

Integer overflow in the Install Engine (inseng.dll) for Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a malicious website or HTML email with a long .CAB file name, which triggers the integer overflow when calculating a buffer length and leads to a heap-based buffer overflow.

← Browse all CVEs View on cve.org ↗