CVE-2005-2831 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-2831
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-2831

Description: Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Explorer, aka a variant of the "COM Object Instantiation Memory Corruption Vulnerability," a different vulnerability than CVE-2005-2127.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/23453 ST 1015348 SAID Secunia Advisory: SA15368 Secunia Advisory: SA18064 Secunia Advisory: SA18311 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1520 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1475 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1426 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1543 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1558 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1597 OSVDB 21763 MS http://www.microsoft.com/technet/security/bulletin/ms05-054.mspx MISC http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf CERT-VN 959049 CERT http://www.us-cert.gov/cas/techalerts/TA05-347A.html BID 15827

Return to the previous page.