CVE-2006-4686

N/A Unknown

Published: October 10, 2006 Modified: April 23, 2026

Description

Buffer overflow in the Extensible Stylesheet Language Transformations (XSLT) processing in Microsoft XML Parser 2.6 and XML Core Services 3.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted Web page.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/22333

Source: secure@microsoft.com

http://securitytracker.com/id?1017033

Source: secure@microsoft.com

http://www.kb.cert.org/vuls/id/562788

Source: secure@microsoft.com

US Government Resource

http://www.osvdb.org/29426

Source: secure@microsoft.com

http://www.securityfocus.com/archive/1/449179/100/0/threaded

Source: secure@microsoft.com

http://www.securityfocus.com/bid/20338

Source: secure@microsoft.com

http://www.vupen.com/english/advisories/2006/3980

Source: secure@microsoft.com

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-061

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A285

Source: secure@microsoft.com

http://secunia.com/advisories/22333