11.318.2006 - MS06-071: Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (928088)

Microsoft XML Core Services Vulnerability - CVE-2006-5745: A vulnerability exists in the XMLHTTP ActiveX control within Microsoft XML Core Services that could allow for remote code execution. An attacker could exploit the vulnerability by constructing a specially crafted Web page that could potentially allow remote code execution if a user visited that page or clicked a link in an e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system. However, user interaction is required to exploit this vulnerability. - Download Microsoft XML Core Services 4.0 - Download Microsoft XML Core Services 6.0 - View Microsoft Security Bulletin MS06-071 - View Microsoft Knowledge Base Article - 928088 - Visit Microsoft Corporation