Vulnerability CVE-2006-1188

Vulnerability Name:

CVE-2006-1188 (CCN-25547)

Assigned:

2006-04-11

Published:

2006-04-11

Updated:

2021-07-23

Summary:

Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via HTML elements with a certain crafted tag, which leads to memory corruption.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: BugTraq Mailing List, Wed Apr 12 2006 - 17:49:30 CDT
[BuHa-Security] Multiple Vulnerabilities in MS IE 6.0 SP2

Source: MITRE
Type: CNA
CVE-2006-1188

Source: CCN
Type: SA18957
Internet Explorer Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
18957

Source: CCN
Type: SECTRACK ID: 1015900
Microsoft Internet Explorer Parsing and State Errors Let Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1015900

Source: CCN
Type: US-CERT VU#824324
Microsoft Internet Explorer fails to properly handle HTML elements with a specially crafted tag

Source: CERT-VN
Type: Patch, US Government Resource
VU#824324

Source: CCN
Type: Microsoft Security Bulletin MS06-013
Cumulative Security Update for Internet Explorer (912812)

Source: CCN
Type: Microsoft Security Bulletin MS06-021
Cumulative Security Update for Internet Explorer (916281)

Source: CCN
Type: Microsoft Security Bulletin MS06-042
Cumulative Security Update for Internet Explorer (918899)

Source: CCN
Type: Microsoft Security Bulletin MS06-067
Cumulative Security Update for Internet Explorer (922760)

Source: CCN
Type: Microsoft Security Bulletin MS06-072
Cumulative Security Update for Internet Explorer (925454)

Source: CCN
Type: Microsoft Security Bulletin MS07-016
Cumulative Security Update for Internet Explorer (928090)

Source: CCN
Type: Microsoft Security Bulletin MS07-027
Cumulative Security Update for Internet Explorer (931768)

Source: CCN
Type: Microsoft Security Bulletin MS07-033
Cumulative Security Update for Internet Explorer (933566)

Source: CCN
Type: Microsoft Security Bulletin MS07-045
Cumulative Security Update for Internet Explorer (937143)

Source: CCN
Type: Microsoft Security Bulletin MS07-057
Cumulative Security Update for Internet Explorer (939653)

Source: CCN
Type: Microsoft Security Bulletin MS07-069
Cumulative Security Update for Internet Explorer (942615)

Source: CCN
Type: Microsoft Security Bulletin MS08-010
Cumulative Security Update for Internet Explorer (944533)

Source: CCN
Type: Microsoft Security Bulletin MS08-024
Cumulative Security Update for Internet Explorer (947864)

Source: CCN
Type: Microsoft Security Bulletin MS08-031
Cumulative Security Update for Internet Explorer (950759)

Source: CCN
Type: Microsoft Security Bulletin MS08-045
Cumulative Security Update for Internet Explorer (953838)

Source: CCN
Type: Microsoft Security Bulletin MS08-058
Cumulative Security Update for Internet Explorer (956390)

Source: BUGTRAQ
Type: UNKNOWN
20060525 [BuHa-Security] MS06-013: HTML Tag Memory Corruption Vulnerability in MS IE 6 SP2

Source: CCN
Type: BID-17468
Microsoft Internet Explorer HTML Tag Memory Corruption Vulnerability

Source: CCN
Type: US-CERT Technical Cyber Security Alert TA06-101A
Microsoft Windows and Internet Explorer Vulnerabilities

Source: CERT
Type: US Government Resource
TA06-101A

Source: VUPEN
Type: UNKNOWN
ADV-2006-1318

Source: CCN
Type: Internet Security Systems Protection Alert - April 11, 2006
Cumulative Security Update for Internet Explorer

Source: MS
Type: UNKNOWN
MS06-013

Source: XF
Type: UNKNOWN
ie-pre-execute-code(25547)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1144

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1290

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1296

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1773

Vulnerable Configuration:

Configuration 1:

cpe:/a:microsoft:internet_explorer:5.5:preview:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6.0:*:windows_server_2003:*:*:*:*:*

OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6:windows_xp_sp2:*:*:*:*:*:*

OR cpe:/h:canon:network_camera_server_vb101:*:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6.0:sp2:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6:*:windows_xp_professional_64bit:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.1:*:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:5.2.3:*:macintosh:*:*:*:*:*

OR cpe:/a:microsoft:ie:6:windows_2000_sp4:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:5.1:*:mac_os:*:*:*:*:*

OR cpe:/a:microsoft:ie:6:windows_server_2003_sp1_itanium_systems:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6:sp1:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6:windows_server_2003_sp1:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6:sp1:windows_xpsp1:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6.0.2600:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6.0.2800:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6.0.2800.1106:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6.0.2900.2180:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*

OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:-::~~~~itanium~:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1_itanium:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:1290	V	IE6 HTML Tag Memory Corruption (Win2K/WinXP)	2014-02-24
oval:org.mitre.oval:def:1144	V	IE6 HTML Tag Memory Corruption (Server 2003,SP1)	2011-05-16
oval:org.mitre.oval:def:1296	V	IE6 HTML Tag Memory Corruption (Server 2003)	2011-05-16
oval:org.mitre.oval:def:1773	V	IE6 HTML Tag Memory Corruption (WinXP)	2011-05-16

BACK