[VIM] extra issues fixed by MS06-067
Steven M. Christey
coley at mitre.org
Tue Nov 14 15:50:47 EST 2006
from the FAQ for DirectAnimation ActiveX Controls Memory Corruption
Vulnerabilities - CVE-2006-4446 and CVE-2006-4777:
When this security bulletin was issued, had these vulnerabilities
been publicly disclosed?
Yes. These vulnerabilities have been publicly disclosed. They have
been assigned Common Vulnerability and Exposure numbers
CVE-2006-4446 and CVE-2006-4777. This security bulletin addresses
the publicly disclosed vulnerabilities as well as additional issues
discovered through internal investigations.
CVE is using CVE-2006-5884 to track these "additional issues," which
*might* be in Danim.dll and/or Lmrt.dll.
More information about the VIM