Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     

  Technical Updates @ TACKtech Corp.  

08.08.2006 - MS06-050: Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution (920670)



View Microsoft related news. Hyperlink COM Object Buffer Overflow Vulnerability - CVE-2006-3086: A remote code execution vulnerability exists in the Hyperlink Object Library. This problem exists because of an unchecked buffer in the code that is used for handling hyperlinks. An attacker could exploit the vulnerability by constructing a malicious hyperlink which could potentially lead to remote code execution if a user clicks a malicious link within an Office file or e-mail message. An attacker who successfully exploited this vulnerability could take complete control of the affected system. User interaction is required to exploit this vulnerability.

Hyperlink Object Function Vulnerability - CVE-2006-3438: A remote code execution vulnerability exists in the Hyperlink Object Library. This problem exists when the Hyperlink Object Library uses a file containing a malformed function while handling hyperlinks. An attacker could exploit the vulnerability by constructing a malicious hyperlink which could potentially lead to remote code execution if a user clicks a malicious link within an Office file, or e-mail message. An attacker who successfully exploited this vulnerability could take complete control of the affected system. User interaction is required to exploit this vulnerability.

Replaces Microsoft Security Bulletin MS05-015

- Download Microsoft Windows 2000 SP4
- Download Microsoft Windows XP SP1/SP2
- Download Microsoft Windows XP Professional x64 Edition
- Download Microsoft Windows Server 2003 RTM/SP1
- Download Microsoft Windows Server 2003 RTM/SP1 (Itanium)
- Download Microsoft Windows Server 2003 x64 Edition
- View Microsoft Security Bulletin MS06-050
- View Microsoft Knowledge Base Article - 920670
- Visit Microsoft Corporation

NID: 11849 / Submitted by: TACKtech Team
Categories: Microsoft
Most recent Microsoft related news.
MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - Version: 1.1
MS16-123 - Important: Security Update for Windows Kernel-Mode Drivers (3192892) - Version: 3.0
MS16-087 - Critical: Security Update for Windows Print Spooler Components (3170005) - Version: 2.0
MS16-095 - Critical: Cumulative Security Update for Internet Explorer (3177356) - Version: 3.0
MS16-039 - Critical: Security Update for Microsoft Graphics Component (3148522) - Version: 4.0
View archive of Microsoft related news.
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
.....