Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2006-3450

EPSS 60.16% · P98
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-3450

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code by using the document.getElementByID Javascript function to access crafted Cascading Style Sheet (CSS) elements, and possibly other unspecified vectors involving certain layout positioning combinations in an HTML file.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft IE HTML布局和定位内存破坏漏洞(MS06-042)
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer解析带有特定布局定位组合的HTML的方式中存在内存破坏漏洞,成功利用此漏洞的攻击者可以完全控制受影响的系统。 由于没有正确的处理CSS类值,通过document.getElementByID访问特制的CSS元素就会触发这个漏洞。攻击者可能通过构建特制网页来利用此漏洞,如果用户查看了该网页,则可能允许远程执行代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2006-3450

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2006-3450

登录查看更多情报信息。

Same Patch Batch · n/a · 2006-08-08 · 18 CVEs total

CVE-2006-3853Informix Dynamic Server windows环境任意代码执行漏洞
CVE-2006-4020PHP scanf.c 安全漏洞
CVE-2006-4018Clam AntiVirus处理UPX压缩PE文件构建堆溢出漏洞
CVE-2006-3862运行在Linux上Informix setuid root程序溢出漏洞
CVE-2006-3861Informix Dynamic Server 获得连接权限漏洞
CVE-2006-3858Informix Dynamic Server共享内存密码泄露漏洞
CVE-2006-3857Informix Dynamic Server 多个SQL语句存在溢出漏洞
CVE-2006-3856IBM Informix Dynamic Server未明拒绝服务攻击漏洞
CVE-2006-3855Informix Dynamic Server ifx_load_internal SQL函数代码执行漏洞
CVE-2006-3451Microsoft IE多个CSS导入内存破坏漏洞(MS06-042)
CVE-2006-3114PC Tools AntiVirus Everyone组Full Control本地权限提升漏洞
CVE-2006-3638Microsoft IE COM对象实例化内存破坏漏洞(MS06-042)
CVE-2006-3637Microsoft IE Frameset内存破坏漏洞(MS06-042)
CVE-2006-3586Jetbox 'index.php'SQL注入漏洞
CVE-2006-3585Jetbox 多个跨站脚本攻击(XSS)漏洞
CVE-2006-3584Jetbox 'index.php'动态函数注入漏洞
CVE-2006-3583Jetbox CMS 特制连接会话劫持攻击漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2006-3450

No comments yet

Leave a comment