What is CVE-2005-1790?

CVE-2005-1790 is a vulnerability in N/a. Published 2005-06-01.

Is CVE-2005-1790 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2005-1790

Microsoft Internet Explorer 6 SP2 6.0.2900.2180 and 6.0.2800.1106, and earlier versions, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Javascript BODY onload event that calls the window funct…

EPSS: 0.816 (99.2th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

18064 (x_refsource_SECUNIA, third-party-advisory)
15546 (x_refsource_SECUNIA, third-party-advisory)
oval:org.mitre.oval:def:1508 (signature, x_refsource_OVAL, vdb-entry)
oval:org.mitre.oval:def:1489 (signature, x_refsource_OVAL, vdb-entry)
13799 (vdb-entry, x_refsource_BID)
VU#887861 (x_refsource_CERT-VN, third-party-advisory)
20050528 Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005) (mailing-list, x_refsource_BUGTRAQ)
20051121 Computer Terrorism Security Advisory (Reclassification) - Microsoft Internet Explorer JavaScript Window() Vulnerability (mailing-list, x_refsource_BUGTRAQ)
TA05-347A (x_refsource_CERT, third-party-advisory)
MS05-054 (x_refsource_MS, vendor-advisory)

Frequently asked questions

What is CVE-2005-1790?: CVE-2005-1790 is a vulnerability in N/a. Published 2005-06-01.
Is CVE-2005-1790 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.