CVE-2006-4219

Microsoft IE - Denial of Service

Title source: rule

Description

The Terminal Services COM object (tsuserex.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by instantiating it as an ActiveX object in Internet Explorer 6.0 SP1 on Microsoft Windows 2003 EE SP1 CN.

Exploits (1)

exploitdb WORKING POC VERIFIED

by nop · htmlremotewindows

https://www.exploit-db.com/exploits/28400

View Code ZIP pw:eip

References (5)

[Third Party Advisory] http://securityreason.com/securityalert/1403

[Exploit] http://www.xsec.org/index.php?module=Releases&act=view&type=1&id=14

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/443493/100/0/threaded

[Exploit] http://www.securityfocus.com/bid/19570

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/28444

Scores

EPSS 0.4123

EPSS Percentile 97.4%

Details

Status published

Products (1)

microsoft/ie 6.0 sp1

Published Aug 18, 2006

Tracked Since Feb 18, 2026