CVE-2006-3898

CVE-2006-3898 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Microsoft Internet Explorer 6.0 on Windows XP SP2 allows remote attackers to cause a denial of service (application crash) by calling the Click method of the Internet.HHCtrl.1 ActiveX object before initializing the URL, which triggers a null dereference.

Learn more about our Web Application Penetration Testing UK.