vendor:
Internet Explorer
by:
Emmanouel Kellinis
N/A
CVSS
CRITICAL
Memory Access Violation
CWE
Product Name: Internet Explorer
Affected Version From: 6.0.2800
Affected Version To: 6.0.2800
Patch Exists: YES
Related CWE:
CPE: a:microsoft:internet_explorer:6.0.2800
Platforms Tested: Windows
2004
Internet Explorer Memory Access Violation
This exploit targets a vulnerability in Internet Explorer and MSN Messenger that allows for remote code execution. By accessing a specific file through an iframe tag, an attacker can trigger a memory access violation, potentially leading to arbitrary code execution.
Mitigation:
Microsoft released a security patch to address this vulnerability. It is recommended to update to the latest version of Internet Explorer.