Intrusion Prevention

MS.IE.COM.Object.Instantiation.Memory.Corruption

Description

This indicates a possible exploit of a memory-corruption vulnerability in Microsoft Internet Explorer.
This vulnerability may allow an attacker to execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Explorer.

Affected Products

Microsoft Internet Explorer 5.01 SP4
Microsoft Internet Explorer 6.0 XP & 2003, 64Bit XP & 2003 edition
Microsoft Internet Explorer 5.5 SP2 ME
Microsoft Internet Explorer 6 SP1 9X

Impact

Compromise of the affected system

Recommended Actions

Cumulative Update for Microsoft Internet Explorer - 896727 is available at the vendor's website.

CVE References

CVE-2006-5745