CVE-2006-3910

CVE-2006-3910 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Internet Explorer 6 on Windows XP SP2, when Outlook is installed, allows remote attackers to cause a denial of service (crash) by calling the NewDefaultItem function of an OVCtl (OVCtl.OVCtl.1) ActiveX object, which triggers a null dereference.

Learn more about our Web Application Penetration Testing UK.