CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-4494

Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including (1) tcprops.dll, (2) fp30wec.dll, (3) mdt2db.dll, (4) mdt2qd.dll, and (5) vi30aut.dll.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.525

EPSS Ranking 97.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://securityreason.com/securityalert/1473
http://www.securityfocus.com/archive/1/443499/100/100/threaded
http://www.securityfocus.com/bid/19572
http://www.xsec.org/index.php?module=releases&act=view&type=1&id=15
http://securityreason.com/securityalert/1473
http://www.securityfocus.com/archive/1/443499/100/100/threaded
http://www.securityfocus.com/bid/19572
http://www.xsec.org/index.php?module=releases&act=view&type=1&id=15

Products affected by CVE-2006-4494

Microsoft » Visual Studio » Version: 6.0

cpe:2.3:a:microsoft:visual_studio:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-4494

Products

Pricing

Contact Us