Hamedata

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Authentication Service (IAS) Helper COM Component (affected versions not specified) Description: A certain ActiveX control in the Microsoft Internet Authentication Service (IAS) Helper COM Component allows remote attackers to cause a denial of service, resulting in a browser crash. This can be achieved by passing a large integer value in the first argument to the `PutProperty` method. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Information Services (IIS) (affected versions not specified) Description: A certain ActiveX control in adsiis.dll allows remote attackers to cause a denial of service (browser crash) via a long string in the second argument to the `GetObject` method. This issue was disclosed by an unreliable researcher, so it might be incorrect. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.