CVE-2006-5581

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 6

Description: The issue allows remote attackers to execute arbitrary code via certain DHTML script functions, such as normalize, and "incorrectly created elements" that trigger memory corruption. A remote code execution vulnerability exists in the way Internet Explorer interprets certain DHTML script function calls to incorrectly created elements. An attacker could exploit the issue by constructing a specially crafted Web page that could potentially allow remote code execution if a user viewed the Web page. An attacker who successfully exploited this issue could take complete control of an affected system.

Recommendations: For Microsoft Internet Explorer version 6, there is no information about a newer version that contains a fix for this issue.