Vulnerability Description
Unspecified vulnerability in Internet Explorer 6.0 on Microsoft Windows XP SP2 allows remote attackers to execute arbitrary code via "exceptional conditions" that trigger memory corruption, as demonstrated using an exception handler and nested object tags, a variant of CVE-2006-1992.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer | 6.0 |
| Microsoft | Windows Xp | All versions |
References
- http://secunia.com/advisories/19762PatchVendor Advisory
- http://secunia.com/secunia_research/2006-41/advisoryVendor Advisory
- http://securitytracker.com/id?1016291
- http://www.kb.cert.org/vuls/id/338828US Government Resource
- http://www.osvdb.org/27475
- http://www.securityfocus.com/archive/1/437099/100/0/threaded
- http://www.securityfocus.com/bid/17820
- http://www.us-cert.gov/cas/techalerts/TA06-164A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2006/2319Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-02
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2006-2218?
CVE-2006-2218 is a vulnerability with a CVSS score of 9.3 (HIGH). Unspecified vulnerability in Internet Explorer 6.0 on Microsoft Windows XP SP2 allows remote attackers to execute arbitrary code via "exceptional conditions" that trigger memory corruption, as demonst...
How severe is CVE-2006-2218?
CVE-2006-2218 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-2218?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Internet Explorer, Microsoft Windows Xp.