How severe is CVE-2006-7031?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Microsoft Internet_explorer

CVE-2006-7031

Microsoft Internet Explorer 6.0.2900 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a table element with a CSS attribute that sets the position, which triggers an "unhandled exception" in mshtml.dll.

EPSS: 0.175 (96.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H.

Affected products

Microsoft Internet_explorer
Microsoft Windows_2000
Microsoft Windows_2003_server — versions gold, r2, sp2
Microsoft Windows_95
Microsoft Windows_98
Microsoft Windows_embedded_compact
Microsoft Windows_me
Microsoft Windows_nt
Microsoft Windows_vista
Microsoft Windows_xp

References

cve@mitre.org (exploit, x_refsource_EXPLOIT-DB)
cve@mitre.org (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2006-7031?: CVE-2006-7031 is a medium-severity vulnerability in Microsoft Internet_explorer. CVSS score: 6.5/10. Published 2007-02-23.
How severe is CVE-2006-7031?: Medium severity. CVSS v3 base score is 6.5 out of 10.