CVE-2006-4193

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer version 6.0 SP1

Description The issue allows remote attackers to cause a denial of service and possibly execute arbitrary code by instantiating COM objects as ActiveX controls. This includes instantiating certain DLL files, such as imskdic.dll (Microsoft IME), chtskdic.dll (Microsoft IME), and msoe.dll (Outlook), which leads to memory corruption.

Recommendations For Microsoft Internet Explorer version 6.0 SP1, consider restricting the instantiation of COM objects as ActiveX controls to minimize the risk of exploitation. As a temporary workaround, avoid using the affected DLL files, including imskdic.dll, chtskdic.dll, and msoe.dll, until a patch is available.