Unrated severityNVD Advisory· Published Aug 23, 2006· Updated Jun 16, 2026

CVE-2006-3869

Description

Heap-based buffer overflow in URLMON.DLL in Microsoft Internet Explorer 6 SP1 on Windows 2000 and XP SP1, with versions the MS06-042 patch before 20060824, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long URL on a website that uses HTTP 1.1 compression.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Microsoft/Ie
cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
Microsoft/Internet Explorerllm-fuzzy
Range: before MS06-042 patch (before 20060824)

Patches

Vulnerability mechanics

References

support.microsoft.com/kb/923762/nvdPatch
www.kb.cert.org/vuls/id/821156nvdPatchUS Government Resource
www.microsoft.com/technet/security/advisory/923762.mspxnvdPatch
secunia.com/advisories/21557nvdVendor Advisory
securityreason.com/securityalert/1441nvd
securitytracker.com/idnvd
www.nsfocus.com/english/homepage/research/0608.htmnvd
www.osvdb.org/28132nvd
www.securityfocus.com/archive/1/444046/100/0/threadednvd
www.securityfocus.com/archive/1/444241/100/0/threadednvd
www.securityfocus.com/archive/1/444319/100/0/threadednvd
www.securityfocus.com/bid/19667nvd
www.vupen.com/english/advisories/2006/3356nvd
exchange.xforce.ibmcloud.com/vulnerabilities/28522nvd
exchange.xforce.ibmcloud.com/vulnerabilities/28893nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.033
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000