Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: MS Internet Explorer 6.0 (mshtml.dll) Denial of Service Exploit
Dec 05 2006 03:25PM
3APA3A (3APA3A SECURITY NNOV RU)
Dear ajannhwt (at) hotmail (dot) com [email concealed],
First, array index overflow is usually very dangerous and is exploitable
to code execution in many cases.
Second, this one is not new. It was reported by Michal Zalewski in March
and is patched in current Internet Explorer versions:
[ more ]
Copyright 2010, SecurityFocus