cbcvebase.
CVE-2006-1992
published 2006-04-25

CVE-2006-1992: mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service (crash) via nested OBJECT tags, which…

PriorityP413low2.6CVSS 2.0
AVNACHAuNCNINAP
EXPLOIT
EPSS
40.43%
98.5th percentile
mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service (crash) via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of code execution was originally theorized, but Microsoft has stated that this issue is non-exploitable.

Affected

2 ranges
VendorProductVersion rangeFixed in
microsoftinternet_explorer
microsoftinternet_explorer

Detection & IOCsextracted from sources · hover to see the quote

filenamemshtml.dll
versionmshtml.dll 6.00.2900.2873
  • Detect HTML content containing deeply nested OBJECT tags, which is the trigger for the invalid pointer dereference in mshtml.dll
  • Monitor for IE6 process crashes (iexplore.exe) originating from mshtml.dll, particularly when processing HTML email, newsgroup postings, or web pages containing nested OBJECT tags
  • ·Microsoft has confirmed this issue is non-exploitable for code execution; crash/DoS is the realistic impact
  • ·Exploit attempts are expected to result in application crash rather than arbitrary code execution
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.