| Revision Date: | 2011-05-16 | Version: | 46 |
| Title: | ActiveX Control Memory Corruption Vulnerability (XP,SP2) |
| Description: | Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows remote attackers to execute arbitrary code via "unexpected data" related to "parameter validation" in the DXImageTransform.Microsoft.Light ActiveX control, which causes Internet Explorer to crash in a way that enables the code execution. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2006-2383
|
| Platform(s): | Microsoft Windows XP
| Product(s): | Microsoft Internet Explorer
|
| Definition Synopsis |
| Windows XP is installed AND Win2K/XP/2003/Vista/2008 service pack 2 is installed
AND the version of mshtml.dll is less than 6.0.2900.2912
|