Vulnerability Details CVE-2006-4687
Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via crafted layout combinations involving DIV tags and HTML CSS float properties that trigger memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.6
EPSS Ranking 98.1%
CVSS Severity
CVSS v2 Score 5.1
References
- http://securitytracker.com/id?1017223
- http://www.kb.cert.org/vuls/id/197852
- http://www.osvdb.org/31323
- http://www.securityfocus.com/archive/1/451590/100/100/threaded
- http://www.securityfocus.com/bid/21020
- http://www.us-cert.gov/cas/techalerts/TA06-318A.html
- http://www.vupen.com/english/advisories/2006/4505
- http://www.zerodayinitiative.com/advisories/ZDI-06-041.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-067
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29199
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A456
- http://securitytracker.com/id?1017223
- http://www.kb.cert.org/vuls/id/197852
- http://www.osvdb.org/31323
- http://www.securityfocus.com/archive/1/451590/100/100/threaded
- http://www.securityfocus.com/bid/21020
- http://www.us-cert.gov/cas/techalerts/TA06-318A.html
- http://www.vupen.com/english/advisories/2006/4505
- http://www.zerodayinitiative.com/advisories/ZDI-06-041.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-067
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29199
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A456
Products affected by CVE-2006-4687
-
cpe:2.3:a:microsoft:ie:6
-
cpe:2.3:a:microsoft:internet_explorer:5.1
-
cpe:2.3:a:microsoft:internet_explorer:5.5