Vulnerabilities > CVE-2006-3471 - Denial Of Service vulnerability in Microsoft IE 6.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
microsoft
exploit available
NVD
Published: 2006-07-10
Updated: 2017-07-20

Summary

Microsoft Internet Explorer 6 on Windows XP allows remote attackers to cause a denial of service (crash) via a table with a frameset as a child, which triggers a null dereference, as demonstrated using the appendChild method.

Vulnerable Configurations

Part Description Count
Application
Microsoft
2

Exploit-Db

descriptionMS Internet Explorer 6 Table.Frameset NULL Dereference Vulnerability. CVE-2006-3471. Dos exploit for windows platform
idEDB-ID:1989
last seen2016-01-31
modified2006-07-07
published2006-07-07
reporterAviv Raff
sourcehttps://www.exploit-db.com/download/1989/
titleMicrosoft Internet Explorer 6 Table.Frameset NULL Dereference Vulnerability

References