>> Microsoft Internet Explorer Long URL Parsing Remote Buffer Overflow Vulnerabilities
Title : Microsoft Internet Explorer Long URL Parsing Remote Buffer Overflow Vulnerabilities VUPEN ID : VUPEN/ADV-2006-3356 CVE ID : CVE-2006-3869 - CVE-2006-3873
Rated as : Critical
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2006-08-23
Technical Description
Two vulnerabilities have been identified in Microsoft Internet Explorer, which could be exploited by remote attackers to crash a vulnerable browser or take complete control of an affected system. These flaws are due to buffer overflow errors when processing overly long URLs, which could be exploited by attackers to cause a denial of service or execute arbitrary commands by convincing a user to visit a specially crafted Web page.
Note : These vulnerabilities were introduced with MS06-042 patches.
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
