Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Microsoft Internet Explorer 6 Memory Address Disclosure

Disclosed June 30, 2010    Partially Patched

Vulnerability Description:

Microsoft Internet Explorer 6 contains a vulnerability when calculating timer ID's that could cause specific memory addresses (i.e. persistent memory locations) to be disclosed. If an attacker is able to combine knowledge of memory locations with a more critical vulnerability (e.g. one that could potentially allow code execution), then it could be further leveraged to bypass ASLR (Address Space Layout Randomization) protection.



Vulnerable Software/Devices:

Internet Explorer 6

Vulnerability Severity:


Exploit Availability:


Exploit Impact:

Remote Code Execution
Remote disclosure of information This client-side vulnerability could allow an attacker to gain information about persistent memory addresses, which could be used alongside other exploits to compromise a system. By itself, the vulnerability is not very potent, but when combined with other vulnerabilities, it could have a much higher impact.

BeyondTrust Prevention and Detection:


The best form of mitigation is available by disabling scripting (i.e. VBscript, JavaScript). Alternatively, it may be possible to limit potential exposure by restricting access to sites/domains using Internet Explorer Zones, however may not fully mitigate the threat since white listed or unrestricted sites could potentially be compromised.




Leave a Reply