CVE-2006-3427

Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (crash) by declaring the sourceURL attribute on an uninitialized DirectAnimation.StructuredGraphicsControl ActiveX Object, which triggers a null dereference.

Date published : 2006-07-06

http://www.securityfocus.com/bid/18855

http://browserfun.blogspot.com/2006/07/mobb-6-structuredgraphicscontrol.html