7.5

CVE-2006-4494

Exploit

EPSS 52.48%
Veröffentlicht 31.08.2006 22:04:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including (1) tcprops.dll, (2) fp30wec.dll, (3) mdt2db.dll, (4) mdt2qd.dll, and (5) vi30aut.dll.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Visual Studio Version6.0

Microsoft ≫ Visual Studio Version6.0 Updatesp1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	52.48%	0.977

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://securityreason.com/securityalert/1473

http://www.securityfocus.com/archive/1/443499/100/100/threaded

http://www.securityfocus.com/bid/19572

http://www.xsec.org/index.php?module=releases&act=view&type=1&id=15

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2006-4494

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-4494

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-4494

EUVD