Описание
Buffer overflow in mshtml.dll in Microsoft Internet Explorer 6.0.2900.2180, and probably other versions, allows remote attackers to execute arbitrary code via an HTML tag with a large number of script action handlers such as onload and onmouseover, as demonstrated using onclick, aka the "Multiple Event Handler Memory Corruption Vulnerability."
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
- Third Party AdvisoryUS Government Resource
- Exploit
- ExploitPatch
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:microsoft:ie:6.0:sp2:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.69669
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Buffer overflow in mshtml.dll in Microsoft Internet Explorer 6.0.2900.2180, and probably other versions, allows remote attackers to execute arbitrary code via an HTML tag with a large number of script action handlers such as onload and onmouseover, as demonstrated using onclick, aka the "Multiple Event Handler Memory Corruption Vulnerability."
EPSS
Процентиль: 99%
0.69669
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other