2.6

CVE-2006-2766

Exploit
Buffer overflow in INETCOMM.DLL, as used in Microsoft Internet Explorer 6.0 through 6.0 SP2, Windows Explorer, Outlook Express 6, and possibly other programs, allows remote user-assisted attackers to cause a denial of service (application crash) via a long mhtml URI in the URL value in a URL file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftIe Version6.0 Updatesp1
MicrosoftIe Version6.0 Updatesp2
MicrosoftInternet Explorer Version6.0
MicrosoftInternet Explorer Version7.0 Updatebeta1
MicrosoftInternet Explorer Version7.0 Updatebeta2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 47.92% 0.987
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.6 4.9 2.9
AV:N/AC:H/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.us-cert.gov/cas/techalerts/TA06-220A.html
US Government Resource
http://secunia.com/advisories/20384
Vendor Advisory
http://securitytracker.com/id?1016654
http://www.kb.cert.org/vuls/id/891204
US Government Resource
http://www.osvdb.org/25949
http://www.securityfocus.com/archive/1/435492/100/0/threaded
http://www.securityfocus.com/archive/1/435609/100/0/threaded
http://www.securityfocus.com/archive/1/435616/100/0/threaded
http://www.securityfocus.com/bid/18198
Exploit
http://www.vupen.com/english/advisories/2006/2088
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-043
https://exchange.xforce.ibmcloud.com/vulnerabilities/26810
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A441