Vulnerability in N/a
CVE-2004-0842
Internet Explorer 6.0 SP1 and earlier, and possibly other versions, allows remote attackers to cause a denial of service (application crash from "memory corruption") via certain malformed Cascading Style Sheet (CSS) elements that trigger h…
EPSS: 0.795 (99.1th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 20040728 Re: Crash IE with 11 bytes ;) (mailing-list, x_refsource_FULLDISC)
- oval:org.mitre.oval:def:4169 (signature, x_refsource_OVAL, vdb-entry)
- MS04-038 (x_refsource_MS, vendor-advisory)
- www.securiteam.com/exploits/5NP042KF5A.html (x_refsource_MISC)
- VU#291304 (x_refsource_CERT-VN, third-party-advisory)
- oval:org.mitre.oval:def:2906 (signature, x_refsource_OVAL, vdb-entry)
- 20040723 Crash IE with 11 bytes ;) (mailing-list, x_refsource_FULLDISC)
- www.ecqurity.com/adv/IEstyle.html (x_refsource_MISC)
- oval:org.mitre.oval:def:5592 (signature, x_refsource_OVAL, vdb-entry)
- ie-popupshow-perform-actions(16675) (vdb-entry, x_refsource_XF)