Stack-based buffer overflow in Microsoft Internet Explorer 5.01 SP4, 6 SP1 on Windows 2000, and 6 on Windows XP and Server 2003 does not properly handle extraneous data associated with an object embedded in a web page, which allows remote attackers to execute arbitrary code via crafted HTML tags that trigger memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."
Software | From | Fixed in |
---|---|---|
microsoft / internet_explorer | 5.01-sp4 | 5.01-sp4.x |
microsoft / internet_explorer | 6 | 6.x |
microsoft / internet_explorer | 6-sp1 | 6-sp1.x |
microsoft / internet_explorer | 7 | 7.x |