header-logo
Suggest Exploit
vendor:
Internet Explorer
by:
Unknown
5.5
CVSS
MEDIUM
Remote Denial of Service
399
CWE
Product Name: Internet Explorer
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE: CVE-2004-1060
CPE: a:microsoft:internet_explorer
Other Scripts:
Platforms Tested: Windows
2004

Microsoft Internet Explorer Remote Denial of Service Vulnerability

The vulnerability occurs when certain font tags are encountered and rendered in Microsoft Internet Explorer. When a page containing the malicious HTML code is viewed, Internet Explorer and all instances spawned from it will crash.

Mitigation:

There is no known mitigation for this vulnerability.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/11536/info

Microsoft Internet Explorer is reported prone to a remote denial of service vulnerability.

The issue presents itself due to a malfunction that occurs when certain font tags are encountered and rendered.

When a page that contains the malicious HTML code is viewed, Internet Explorer and all instances of Internet Explorer that are spawned from the instance used to view the malicious page, will crash.

<div style="vertical-align:top;">
<p>First <font size="4">Paragraph</p>
<p>Second </font> Paragraph</p>
</div>