CVE-2006-3357

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/07/2006
Last modified:
03/04/2025

Description

Heap-based buffer overflow in HTML Help ActiveX control (hhctrl.ocx) in Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code by repeatedly setting the Image field of an Internet.HHCtrl.1 object to certain values, possibly related to improper escaping and long strings.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools