CVE-2006-0057

CVE Database · CVE-2006-0057

CVE-2006-0057

· N/AModified

CVSS v3.1

N/A

EPSS

19.63%

Published

Jan 27, 2006

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to bypass the Kill bit settings for dangerous ActiveX controls via unknown vectors involving crafted HTML, which can expose the browser to attacks that would otherwise be prevented by the Kill bit setting. NOTE: CERT/CC claims that MS05-054 fixes this issue, but it is not described in MS05-054.

Affected Products (4)

microsoft · ievulnerable

microsoft · internet_explorervulnerable

References (10)

http://www.kb.cert.org/vuls/id/998297

Third Party AdvisoryUS Government Resource

http://www.microsoft.com/technet/security/bulletin/ms05-054.mspx

PatchVendor Advisory

http://www.osvdb.org/23657

http://www.securityfocus.com/bid/16409

https://exchange.xforce.ibmcloud.com/vulnerabilities/24379

http://www.kb.cert.org/vuls/id/998297

Third Party AdvisoryUS Government Resource

http://www.microsoft.com/technet/security/bulletin/ms05-054.mspx

PatchVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs