CVE-2006-1245

Buffer overflow in mshtml.dll in Microsoft Internet Explorer 6.0.2900.2180, and probably other versions, allows remote attackers to execute arbitrary code via an HTML tag with a large number of script action handlers such as onload and onmouseover, as demonstrated using onclick, aka the "Multiple Event Handler Memory Corruption Vulnerability."

Date published : 2006-03-16

http://www.securityfocus.com/bid/17131

http://archives.neohapsis.com/archives/bugtraq/2006-02/0855.html