DHTML Method Heap Memory Corruption Vulnerability in Internet Explorer 5.01, 5.5, and 6

DHTML Method Heap Memory Corruption Vulnerability in Internet Explorer 5.01, 5.5, and 6

CVE-2005-0055 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Internet Explorer 5.01, 5.5, and 6 does not properly validate buffers when handling certain DHTML methods including the createControlRange Javascript function, which allows remote attackers to execute arbitrary code, aka the "DHTML Method Heap Memory Corruption Vulnerability."

Learn more about our Web Application Penetration Testing UK.