CVE-2006-3943

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer 6 on Windows XP SP2

Description The issue is related to a stack-based buffer overflow in the NDFXArtEffects component. This can be triggered by remote attackers sending long values for certain properties, specifically RGBExtraColor, RGBForeColor, and RGBBackColor, leading to a denial of service where the application crashes.

Recommendations For Microsoft Internet Explorer 6 on Windows XP SP2, consider restricting access to the NDFXArtEffects component until a fix is available. As a temporary workaround, avoid using long values for the RGBExtraColor, RGBForeColor, and RGBBackColor properties to minimize the risk of exploitation.