CVE-2006-3357

NONECVSS 0.0

0.0

Heap-based buffer overflow in HTML Help ActiveX control (hhctrl.ocx) in Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code by repeatedly setting the Image field of an Internet.HHCtrl.1 object to certain values, possibly related to improper escaping and long strings.

🔗 References (28)

cve@mitrehttp://browserfun.blogspot.com/2006/07/mobb-2-internethhctrl-image-property.html
cve@mitrehttp://secunia.com/advisories/20906
cve@mitrehttp://securitytracker.com/id?1016434
cve@mitrehttp://www.kb.cert.org/vuls/id/159220
cve@mitrehttp://www.osvdb.org/26835
cve@mitrehttp://www.securityfocus.com/archive/1/442733/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/18769
cve@mitrehttp://www.tippingpoint.com/security/advisories/TSRT-06-08.html
cve@mitrehttp://www.us-cert.gov/cas/techalerts/TA06-220A.html
cve@mitrehttp://www.vupen.com/english/advisories/2006/2634
cve@mitrehttp://www.vupen.com/english/advisories/2006/2635
cve@mitrehttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-046
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/27573
cve@mitrehttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13
af854a3a-2127-422b-91ae-364da2661108http://browserfun.blogspot.com/2006/07/mobb-2-internethhctrl-image-property.html

Is Your Infrastructure Affected by CVE-2006-3357?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-3357

📅 Published

🔄 Last Modified

🔗 References (28)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-3357?