CVE-2005-0553

Microsoft Internet Explorer <6 - Code Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0553. PoCs published by Berend-Jan Wever.

AI-analyzed exploit summary The provided text describes a vulnerability in Microsoft Internet Explorer (CVE-2005-0553) involving a race condition in script object processing, potentially leading to arbitrary code execution. However, no actual exploit code is included in the snippet.

Description

Race condition in the memory management routines in the DHTML object processor in Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail, aka "DHTML Object Memory Corruption Vulnerability".

Exploits (1)

exploitdb WRITEUP VERIFIED

by Berend-Jan Wever · textremotewindows

https://www.exploit-db.com/exploits/25386

View Code ZIP pw:eip

The provided text describes a vulnerability in Microsoft Internet Explorer (CVE-2005-0553) involving a race condition in script object processing, potentially leading to arbitrary code execution. However, no actual exploit code is included in the snippet.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Racy

Target: Microsoft Internet Explorer (versions affected by CVE-2005-0553)

No auth needed

Prerequisites: Victim must visit a malicious website

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (11)

Core 11

Core References

Patch, Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/774338

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/19831

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1695

Patch, Vendor Advisory third-party-advisory x_refsource_idefense

http://www.idefense.com/application/poi/display?id=228&type=vulnerabilities

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/14922/

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-020

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4985

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4874

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3100

Patch, Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert

http://www.us-cert.gov/cas/techalerts/TA05-102A.html

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3752

Scores

EPSS 0.7232

EPSS Percentile 98.8%

Details

Status published

Products (4)

microsoft/ie 6.0 sp1

microsoft/internet_explorer 5.01 sp3 (2 CPE variants)

microsoft/internet_explorer 5.5 sp2

microsoft/internet_explorer 6.0

Published May 02, 2005

Tracked Since Feb 18, 2026