Vulnerabilities > CVE-2004-2476 - Unspecified vulnerability in Microsoft Internet Explorer 6.0.2800

CVSS 2.6 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

high complexity

microsoft

NVD

Published: 2004-12-31

Updated: 2021-07-23

Summary

Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service (infinite loop and crash) via an IFRAME with "?" as the file source.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Explorer 6.0.2800	1

References

http://archives.neohapsis.com/archives/bugtraq/2004-04/0061.html
http://archives.neohapsis.com/archives/bugtraq/2004-04/0080.html
http://www.securityfocus.com/bid/10073
https://exchange.xforce.ibmcloud.com/vulnerabilities/15832