Vulnerabilities > CVE-2006-6310 - Unspecified vulnerability in Microsoft Internet Explorer

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

exploit available

NVD

Published: 2006-12-06

Updated: 2021-07-23

Summary

Microsoft Internet Explorer 6.0 SP1 and earlier allows remote attackers to cause a denial of service (crash) via an invalid src attribute value ("?") in an HTML frame tag that is in a frameset tag with a large rows attribute. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Explorer 4.0.1 Microsoft Internet Explorer 4.01 Microsoft Internet Explorer 5.0.1 Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 5.5 Microsoft Internet Explorer 6 Microsoft Internet Explorer 6.0	7

Exploit-Db

description	Microsoft Internet Explorer 6.0 Frame Src Denial Of Service Vulnerability. CVE-2006-6310. Dos exploit for windows platform
id	EDB-ID:29229
last seen	2016-02-03
modified	2006-12-05
published	2006-12-05
reporter	Juan Pablo Lopez
source	https://www.exploit-db.com/download/29229/
title	Microsoft Internet Explorer 6.0 Frame Src Denial of Service Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References