CVE

Id
17407  
CVE No.
CVE-2006-1303  
Status
Candidate  
Description
Multiple unspecified vulnerabilities in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allow remote attackers to execute arbitrary code by instantiating certain COM objects from Wmm2fxa.dll as ActiveX controls including (1) DXImageTransform.Microsoft.MMSpecialEffect1Input, (2) DXImageTransform.Microsoft.MMSpecialEffect1Input.1, (3) DXImageTransform.Microsoft.MMSpecialEffect2Inputs, (4) DXImageTransform.Microsoft.MMSpecialEffect2Inputs.1, (5) DXImageTransform.Microsoft.MMSpecialEffectInplace1Input, and (6) DXImageTransform.Microsoft.MMSpecialEffectInplace1Input.1, which causes memory corruption during garbage collection.  
Phase
Assigned (20060320)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
143932 17407 CVE-2006-1303 BUGTRAQ:20060613 ZDI-06-018: Microsoft Internet Explorer DXImageTransform ActiveX Memory Corruption Vulnerability  View
143933 17407 CVE-2006-1303 URL:http://www.securityfocus.com/archive/1/archive/1/437041/100/0/threaded  View
143934 17407 CVE-2006-1303 MISC:http://www.zerodayinitiative.com/advisories/ZDI-06-018.html  View
143935 17407 CVE-2006-1303 MS:MS06-021  View
143936 17407 CVE-2006-1303 URL:http://www.microsoft.com/technet/security/bulletin/ms06-021.mspx  View
143937 17407 CVE-2006-1303 CERT-VN:VU#959049  View
143938 17407 CVE-2006-1303 URL:http://www.kb.cert.org/vuls/id/959049  View
143939 17407 CVE-2006-1303 BID:18328  View
143940 17407 CVE-2006-1303 URL:http://www.securityfocus.com/bid/18328  View
143941 17407 CVE-2006-1303 VUPEN:ADV-2006-2319  View
143942 17407 CVE-2006-1303 URL:http://www.vupen.com/english/advisories/2006/2319  View
143943 17407 CVE-2006-1303 OSVDB:26442  View
143944 17407 CVE-2006-1303 URL:http://www.osvdb.org/26442  View
143945 17407 CVE-2006-1303 OVAL:oval:org.mitre.oval:def:1135  View
143946 17407 CVE-2006-1303 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1135  View
143947 17407 CVE-2006-1303 OVAL:oval:org.mitre.oval:def:1767  View
143948 17407 CVE-2006-1303 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1767  View
143949 17407 CVE-2006-1303 OVAL:oval:org.mitre.oval:def:1830  View
143950 17407 CVE-2006-1303 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1830  View
143951 17407 CVE-2006-1303 OVAL:oval:org.mitre.oval:def:1928  View
143952 17407 CVE-2006-1303 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1928  View
143953 17407 CVE-2006-1303 OVAL:oval:org.mitre.oval:def:1973  View
143954 17407 CVE-2006-1303 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1973  View
143955 17407 CVE-2006-1303 OVAL:oval:org.mitre.oval:def:2017  View
143956 17407 CVE-2006-1303 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2017  View
143957 17407 CVE-2006-1303 SECTRACK:1016291  View
143958 17407 CVE-2006-1303 URL:http://securitytracker.com/id?1016291  View
143959 17407 CVE-2006-1303 SECUNIA:20595  View
143960 17407 CVE-2006-1303 URL:http://secunia.com/advisories/20595  View
143961 17407 CVE-2006-1303 XF:ie-wmm2fxadll-execute-code(26774)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
51357 JVNDB-2007-000019 Microsoft Outlook の不正なメールヘッダ処理によるサービス運用妨害 (DoS) の脆弱性 Microsoft Outlook には、電子メールヘッダを処理する方法に不備が存在し、長い Subject や To、CC ヘッダを含む不正な電子メールのヘッダを処理する際にサービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2006-1305 17407 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000019.html  View