CVE-2006-1016

Name of the Vulnerable Software and Affected Versions Internet Explorer 6.0 versions on Windows 2000 before SP4 and Windows XP before SP1

Description A buffer overflow issue exists in the IsComponentInstalled method, allowing remote attackers to execute arbitrary code via JavaScript that calls IsComponentInstalled with a long first argument.

Recommendations For Internet Explorer 6.0 on Windows 2000 before SP4 and Windows XP before SP1, consider applying the necessary service packs to update the operating system, which may include fixes for this issue. As a temporary workaround, consider disabling JavaScript in Internet Explorer until a patch is available.