By providing an overly long string when handling loadExtensionFactory method, an attacker may be able to overflow the static stack buffer. The attacker may then execute code on the target device remotely. This module runs a web server waiting for vulnerable clients (Internet Explorer 6, 7, 8) to connect to it.
CVE Link
Exploit Platform
Exploit Type
Product Name