Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Heap-based buffer overflow in URLMON.DLL in Microsoft Internet Explorer 6 SP1 on Windows 2000 and XP SP1, with versions the MS06-042 patch before 20060912, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long URL in a GZIP-encoded website that was the target of an HTTP redirect, due to an incomplete fix for CVE-2006-3869.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft IE压缩内容URL堆溢出漏洞
Vulnerability Description
Internet Explorer是微软发布的非常流行的WEB浏览器。 IE新发布的补丁中出现了一个处理URL的堆溢出漏洞,远程攻击者可能利用此漏洞在用户机器上执行任意指令。 由于没有正确的使用lstrcpynA,带有MS06-042补丁的URLMON.DLL中存在堆溢出漏洞。CMimeFt::Create为CMimeFt类的新例程分配了390h字节的堆块,其中的+160h偏移处存在104h (MAX_PATH)字节的ASCII字符缓冲区: 1A4267F8 push 390h ; cb 1A4267FD
CVSS Information
N/A
Vulnerability Type
N/A