CVE-2006-4494

Microsoft Visual Studio 6.0 - Remote Code Execution via ActiveX COM Object Instantiation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4494. PoCs published by XSec.

AI-analyzed exploit summary This exploit leverages multiple Visual Studio COM objects to trigger a denial-of-service (DoS) condition in Microsoft Internet Explorer. The HTML file instantiates specific CLSIDs, which may lead to crashes or potential remote code execution.

Description

Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including (1) tcprops.dll, (2) fp30wec.dll, (3) mdt2db.dll, (4) mdt2qd.dll, and (5) vi30aut.dll.

Exploits (1)

exploitdb WORKING POC VERIFIED
by XSec · htmldoswindows
https://www.exploit-db.com/exploits/28401

This exploit leverages multiple Visual Studio COM objects to trigger a denial-of-service (DoS) condition in Microsoft Internet Explorer. The HTML file instantiates specific CLSIDs, which may lead to crashes or potential remote code execution.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Internet Explorer (with Visual Studio 6.0 COM objects installed)
No auth needed
Prerequisites: Visual Studio 6.0 COM objects registered on the target system · Victim must visit the malicious HTML page
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/443499/100/100/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/19572
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/1473

Scores

EPSS 0.2158
EPSS Percentile 97.3%

Details

Status published
Products (1)
microsoft/visual_studio 6.0 (2 CPE variants)
Published Aug 31, 2006
Tracked Since Feb 18, 2026