CVE-2006-4494 | Vulnerability Database | Aqua Security

Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including (1) tcprops.dll, (2) fp30wec.dll, (3) mdt2db.dll, (4) mdt2qd.dll, and (5) vi30aut.dll.

Affected Software

Name	Vendor	Start Version	End Version
Visual_studio	Microsoft	6.0 (including)	6.0 (including)
Visual_studio	Microsoft	6.0-sp1 (including)	6.0-sp1 (including)

References

http://securityreason.com/securityalert/1473
http://www.securityfocus.com/archive/1/443499/100/100/threaded
http://www.securityfocus.com/bid/19572
http://www.xsec.org/index.php?module=releases\u0026act=view\u0026type=1\u0026id=15
http://securityreason.com/securityalert/1473
http://www.securityfocus.com/archive/1/443499/100/100/threaded
http://www.securityfocus.com/bid/19572
http://www.xsec.org/index.php?module=releases\u0026act=view\u0026type=1\u0026id=15

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-4494
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html