MS.IE.Nested.OBJECT.Tag.Handling.Memory.Corruption

description-logoDescription

Indicates a possible attempt at exploiting a bug in Microsoft Internet Explorer which leads to a denial of service (crash) or the execution of arbitrary code. The vulnerability is found when using nested OBJECT tags, which can trigger invalid pointer dererences including NULL dereferences.

affected-products-logoAffected Products

Microsoft Internet Explorer 6.0 SP2.

Impact logoImpact

System compromise or Denial of service.

recomended-action-logoRecommended Actions

Microsoft has released a security update that fixes this vulnerability.
http://www.microsoft.com/technet/security/Bulletin/MS06-021.mspx

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)