CVE-2008-3476

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 5.01 SP4 through 6

Description A remote code execution issue exists due to improper handling of errors associated with access to uninitialized memory. This allows attackers to execute arbitrary code via a crafted HTML document. An attacker could exploit this by constructing a specially crafted Web page, potentially gaining the same user rights as the logged-on user when a user views the page.

Recommendations For Microsoft Internet Explorer versions 5.01 SP4 through 6, at the moment, there is no information about a newer version that contains a fix for this vulnerability.