VYPR
Unrated severityNVD Advisory· Published Jun 13, 2006· Updated Jun 16, 2026

CVE-2006-1303

CVE-2006-1303

Description

Multiple unspecified vulnerabilities in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allow remote attackers to execute arbitrary code by instantiating certain COM objects from Wmm2fxa.dll as ActiveX controls including (1) DXImageTransform.Microsoft.MMSpecialEffect1Input, (2) DXImageTransform.Microsoft.MMSpecialEffect1Input.1, (3) DXImageTransform.Microsoft.MMSpecialEffect2Inputs, (4) DXImageTransform.Microsoft.MMSpecialEffect2Inputs.1, (5) DXImageTransform.Microsoft.MMSpecialEffectInplace1Input, and (6) DXImageTransform.Microsoft.MMSpecialEffectInplace1Input.1, which causes memory corruption during garbage collection.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

12
  • Microsoft/Ie5 versions
    cpe:2.3:a:microsoft:ie:5.0.1:*:windows_2000:*:*:*:*:*+ 4 more
    • cpe:2.3:a:microsoft:ie:5.0.1:*:windows_2000:*:*:*:*:*
    • cpe:2.3:a:microsoft:ie:5.0.1:*:windows_95:*:*:*:*:*
    • cpe:2.3:a:microsoft:ie:5.0.1:*:windows_98:*:*:*:*:*
    • cpe:2.3:a:microsoft:ie:5.0.1:*:windows_nt_4.0:*:*:*:*:*
    • cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp2:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
    • (no CPE)range: <=6 SP1

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.