Security Advisory

CVE-2006-1992

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-04-25 01:00:00

Last updated 2024-08-07 17:35:30

Assigner mitre

State PUBLISHED

Description

mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service (crash) via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of code execution was originally theorized, but Microsoft has stated that this issue is non-exploitable.

← Browse all CVEs View on cve.org ↗