Oval Definition:oval:org.mitre.oval:def:1704
Revision Date:2011-05-16Version:45
Title:IE6 COM Object Instantiation Memory Corruption (Server 2003,SP1)
Description:Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via by instantiating the (1) Mdt2gddr.dll, (2) Mdt2dd.dll, and (3) Mdt2gddo.dll COM objects as ActiveX controls, which leads to memory corruption.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-1186
Platform(s):Microsoft Windows Server 2003
Product(s):Microsoft Internet Explorer
Definition Synopsis
  • Windows Server 2003 is installed
  • AND Win2K/XP/2003/Vista service pack 1 is installed
  • AND the version of mshtml.dll is less than 6.0.3790.2666
  • BACK