Vulnerability in Microsoft Ie

CVE-2010-1991

Microsoft Internet Explorer 6.0.2900.2180, 7, and 8.0.7600.16385 executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service (excessiv…

EPSS: 0.105 (95.2th percentile) — read the EPSS interpretation.

Affected products

Microsoft Ie — versions 8.0.7600.16385
Microsoft Internet_explorer — versions 7.0, 7, 6.0.2900.2180
N/a — versions n/a

Weakness classification (CWE)

CWE-399

References

cve@mitre.org (Exploit, x_refsource_MISC)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)