Vulnerability CVE-2006-1190

Vulnerability Name:

CVE-2006-1190 (CCN-25552)

Assigned:

2006-04-11

Published:

2006-04-11

Updated:

2021-07-23

Summary:

Microsoft Internet Explorer 5.01 through 6 does not always return the correct IOleClientSite information when dynamically creating an embedded object, which could cause Internet Explorer to run the object in the wrong security context or zone, and allow remote attackers to execute arbitrary code.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2006-1190

Source: CCN
Type: SA18957
Internet Explorer Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
18957

Source: CCN
Type: SECTRACK ID: 1015900
Microsoft Internet Explorer Parsing and State Errors Let Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1015900

Source: CCN
Type: ASA-2006-079
Windows Security Updates for April 2006 - (MS06-013 - MS06-017)

Source: CCN
Type: US-CERT VU#959649
Microsoft Internet Explorer fails to properly handle embedded objects

Source: CERT-VN
Type: US Government Resource
VU#959649

Source: CCN
Type: Microsoft Security Bulletin MS06-013
Cumulative Security Update for Internet Explorer (912812)

Source: CCN
Type: Microsoft Security Bulletin MS06-021
Cumulative Security Update for Internet Explorer (916281)

Source: CCN
Type: Microsoft Security Bulletin MS06-042
Cumulative Security Update for Internet Explorer (918899)

Source: CCN
Type: Microsoft Security Bulletin MS06-067
Cumulative Security Update for Internet Explorer (922760)

Source: CCN
Type: Microsoft Security Bulletin MS06-072
Cumulative Security Update for Internet Explorer (925454)

Source: CCN
Type: Microsoft Security Bulletin MS07-016
Cumulative Security Update for Internet Explorer (928090)

Source: CCN
Type: Microsoft Security Bulletin MS07-027
Cumulative Security Update for Internet Explorer (931768)

Source: CCN
Type: Microsoft Security Bulletin MS07-033
Cumulative Security Update for Internet Explorer (933566)

Source: CCN
Type: Microsoft Security Bulletin MS07-045
Cumulative Security Update for Internet Explorer (937143)

Source: CCN
Type: Microsoft Security Bulletin MS07-057
Cumulative Security Update for Internet Explorer (939653)

Source: CCN
Type: Microsoft Security Bulletin MS07-069
Cumulative Security Update for Internet Explorer (942615)

Source: CCN
Type: Microsoft Security Bulletin MS08-010
Cumulative Security Update for Internet Explorer (944533)

Source: CCN
Type: Microsoft Security Bulletin MS08-024
Cumulative Security Update for Internet Explorer (947864)

Source: CCN
Type: Microsoft Security Bulletin MS08-031
Cumulative Security Update for Internet Explorer (950759)

Source: CCN
Type: Microsoft Security Bulletin MS08-045
Cumulative Security Update for Internet Explorer (953838)

Source: CCN
Type: Microsoft Security Bulletin MS08-058
Cumulative Security Update for Internet Explorer (956390)

Source: BID
Type: UNKNOWN
17455

Source: CCN
Type: BID-17455
Microsoft Internet Explorer Erroneous IOleClientSite Data Zone Bypass Vulnerability

Source: CCN
Type: US-CERT Technical Cyber Security Alert TA06-101A
Microsoft Windows and Internet Explorer Vulnerabilities

Source: VUPEN
Type: UNKNOWN
ADV-2006-1318

Source: CCN
Type: Internet Security Systems Protection Alert - April 11, 2006
Cumulative Security Update for Internet Explorer

Source: MS
Type: UNKNOWN
MS06-013

Source: XF
Type: UNKNOWN
ie-ioleclientsite-execute-code(25552)

Source: XF
Type: UNKNOWN
ie-ioleclientsite-execute-code(25552)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1541

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1735

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1783

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:965

Vulnerable Configuration:

Configuration 1:

cpe:/a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.1:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*

OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:-::~~~~itanium~:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1_itanium:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:965	V	IE6 Script Execution Vulnerability (Win2K/XP,SP1)	2014-02-24
oval:org.mitre.oval:def:1541	V	IE6 Script Execution Vulnerability (Server 2003,SP1)	2011-05-16
oval:org.mitre.oval:def:1735	V	IE6 Script Execution Vulnerability (WinXP)	2011-05-16
oval:org.mitre.oval:def:1783	V	IE6 Script Execution Vulnerability (Server 2003)	2011-05-16

BACK