10

CVE-2006-1186

Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via by instantiating the (1) Mdt2gddr.dll, (2) Mdt2dd.dll, and (3) Mdt2gddo.dll COM objects as ActiveX controls, which leads to memory corruption.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftIe Version5.0.1 Editionwindows_2000
MicrosoftIe Version5.0.1 Editionwindows_95
MicrosoftIe Version5.0.1 Editionwindows_98
MicrosoftIe Version5.0.1 Editionwindows_nt_4.0
MicrosoftIe Version5.01 Updatewindows_2000_sp4
MicrosoftIe Version6 Updatewindows_server_2003_sp1
MicrosoftInternet Explorer Version5.0.1
MicrosoftInternet Explorer Version5.0.1 Updatesp1
MicrosoftInternet Explorer Version5.0.1 Updatesp2
MicrosoftInternet Explorer Version5.0.1 Updatesp3
MicrosoftInternet Explorer Version5.0.1 Updatesp4
MicrosoftInternet Explorer Version5.01
MicrosoftInternet Explorer Version5.1
MicrosoftInternet Explorer Version5.01 Updatesp1
MicrosoftInternet Explorer Version5.01 Updatesp2
MicrosoftInternet Explorer Version5.01 Updatesp3
MicrosoftInternet Explorer Version5.01 Updatesp4
MicrosoftInternet Explorer Version5.5
MicrosoftInternet Explorer Version5.5 Updatepreview
MicrosoftInternet Explorer Version5.5 Updatesp1
MicrosoftInternet Explorer Version5.5 Updatesp2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 74.82% 0.987
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C