Vulnerabilities > CVE-2006-3944 - Object ListWidth Property Denial Of Service vulnerability in Microsoft IE 6
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) via a (1) Forms.ListBox.1 or (2) Forms.ListBox.1 object with the ListWidth property set to (a) 0x7fffffff, which triggers an integer overflow exception, or to (b) 0x7ffffffe, which triggers a null dereference.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Microsoft Internet Explorer 6.0 Multiple Object ListWidth Property Denial Of Service Vulnerability. CVE-2006-3944. Dos exploit for windows platform |
| id | EDB-ID:28258 |
| last seen | 2016-02-03 |
| modified | 2006-07-23 |
| published | 2006-07-23 |
| reporter | hdm |
| source | https://www.exploit-db.com/download/28258/ |
| title | Microsoft Internet Explorer 6.0 - Multiple Object ListWidth Property Denial of Service Vulnerability |