ActiveX Control Memory Corruption Vulnerability (WinS03)ID: oval:org.mitre.oval:def:1949 | Date: (C)2006-06-14 (M)2021-07-27 |
Class: VULNERABILITY | Family: windows |
Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows remote attackers to execute arbitrary code via "unexpected data" related to "parameter validation" in the DXImageTransform.Microsoft.Light ActiveX control, which causes Internet Explorer to crash in a way that enables the code execution.
Platform: |
Microsoft Windows Server 2003 |
Product: |
Microsoft Internet Explorer |