header-logo
Suggest Exploit
vendor:
Internet Explorer
by:
SecurityFocus
7.5
CVSS
HIGH
Microsoft Internet Explorer Crash
119
CWE
Product Name: Internet Explorer
Affected Version From: Microsoft Internet Explorer 5.0
Affected Version To: Microsoft Internet Explorer 5.5
Patch Exists: YES
Related CWE: N/A
CPE: o:microsoft:internet_explorer
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows 95, Windows 98
2001

Microsoft Internet Explorer Crash

It is possible for a malicious web page using JavaScript to crash the browser process. Under Windows 95 and 98, this may impact the underlying operating system as well. This behavior can be caused by the indirect recursive calling of an onError event which redefines an invalid source to an image tag.

Mitigation:

Upgrade to the latest version of Microsoft Internet Explorer.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/4583/info

An issue has been reported in some versions of Microsoft Internet Explorer. It is possible for a malicious web page using JavaScript to crash the browser process. Under Windows 95 and 98, this may impact the underlying operating system as well.

This behavior can be caused by the indirect recursive calling of an onError event which redefines an invalid source to an image tag.

<IMG src="::" onError="this.src='::';">

Navigation

Suggest Exploit

Services By CQR