| Revision Date: | 2011-05-16 | Version: | 45 |
| Title: | HTML Decoding Memory Corruption Vulnerability (WinS03) |
| Description: | Heap-based buffer overflow in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows remote attackers to execute arbitrary code via crafted UTF-8 encoded HTML that results in size discrepancies during conversion to Unicode, aka "HTML Decoding Memory Corruption Vulnerability." |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2006-2382
|
| Platform(s): | Microsoft Windows Server 2003
| Product(s): | Microsoft Internet Explorer
|
| Definition Synopsis |
| Windows Server 2003 is installed AND NOT Win2K/XP/2003 is patched
AND the version of mshtml.dll is less than 6.0.3790.536
|