exploitDog

CVE-2006-7206

Опубликовано: 22 июн. 2007

Источник: nvd

CVSS2: 7.8

EPSS Средний

Описание

Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) by creating a ADODB.Recordset object and making a series of calls to the NextRecordset method with a long string argument, which causes an "invalid memory access" in the SysFreeString function, a different issue than CVE-2006-3510 and CVE-2006-3899.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.4854

Средний

7.8 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-m53r-x65q-r823

github

почти 4 года назад

Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) by creating a ADODB.Recordset object and making a series of calls to the NextRecordset method with a long string argument, which causes an "invalid memory access" in the SysFreeString function, a different issue than CVE-2006-3510 and CVE-2006-3899.

EPSS

Процентиль: 98%

0.4854

Средний

7.8 High

CVSS2

Дефекты

NVD-CWE-Other