CVE-2006-1191

Microsoft Internet Explorer <6 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1191.

AI-analyzed exploit summary This HTML file exploits CVE-2006-1191, a vulnerability in Internet Explorer that allows remote code execution via malformed HTML tags. The exploit triggers a memory corruption issue by using improperly nested and closed HTML tags.

Description

Microsoft Internet Explorer 5.01 through 6 does not always correctly identify the domain that is associated with a browser window, which allows remote attackers to obtain sensitive cross-domain information and spoof sites by running script after the user has navigated to another site.

Exploits (1)

exploitdb WORKING POC

htmldoswindows

https://www.exploit-db.com/exploits/1838

View Code ZIP pw:eip

This HTML file exploits CVE-2006-1191, a vulnerability in Internet Explorer that allows remote code execution via malformed HTML tags. The exploit triggers a memory corruption issue by using improperly nested and closed HTML tags.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Internet Explorer 6.0

No auth needed

Prerequisites: Victim must visit a malicious webpage using a vulnerable version of Internet Explorer

MITRE ATT&CK