CVE-2006-4868

NONECVSS 0.0

0.0

Stack-based buffer overflow in the Vector Graphics Rendering engine (vgx.dll), as used in Microsoft Outlook and Internet Explorer 6.0 on Windows XP SP2, and possibly other versions, allows remote attackers to execute arbitrary code via a Vector Markup Language (VML) file with a long fill parameter within a rect tag.

🔗 References (42)

cve@mitrehttp://blogs.securiteam.com/index.php/archives/624
cve@mitrehttp://secunia.com/advisories/21989
cve@mitrehttp://securitytracker.com/id?1016879
cve@mitrehttp://sunbeltblog.blogspot.com/2006/09/seen-in-wild-zero-day-exploit-being.html
cve@mitrehttp://support.microsoft.com/kb/925486
cve@mitrehttp://www.kb.cert.org/vuls/id/416092
cve@mitrehttp://www.microsoft.com/technet/security/advisory/925568.mspx
cve@mitrehttp://www.osvdb.org/28946
cve@mitrehttp://www.securityfocus.com/archive/1/446378/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/446505/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/446523/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/446528/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/446881/100/200/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/447070/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/448552/100/0/threaded

Is Your Infrastructure Affected by CVE-2006-4868?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-4868

📅 Published

🔄 Last Modified

🔗 References (42)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-4868?