Oval Definition:	oval:org.mitre.oval:def:1830
Revision Date: 2011-05-16 Version: 46 Title: COM Object Instantiation Memory Corruption Vulnerability (XP,SP2) Description: Multiple unspecified vulnerabilities in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allow remote attackers to execute arbitrary code by instantiating certain COM objects from Wmm2fxa.dll as ActiveX controls including (1) DXImageTransform.Microsoft.MMSpecialEffect1Input, (2) DXImageTransform.Microsoft.MMSpecialEffect1Input.1, (3) DXImageTransform.Microsoft.MMSpecialEffect2Inputs, (4) DXImageTransform.Microsoft.MMSpecialEffect2Inputs.1, (5) DXImageTransform.Microsoft.MMSpecialEffectInplace1Input, and (6) DXImageTransform.Microsoft.MMSpecialEffectInplace1Input.1, which causes memory corruption during garbage collection. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-1303 Platform(s): Microsoft Windows XP Product(s): Microsoft Internet Explorer Definition Synopsis Windows XP is installed AND Win2K/XP/2003/Vista/2008 service pack 2 is installed AND the version of mshtml.dll is less than 6.0.2900.2912
BACK