Vulnerabilities > CVE-2006-7029 - Unspecified vulnerability in Microsoft Internet Explorer

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

NVD

Published: 2007-02-23

Updated: 2021-07-23

Summary

Microsoft Internet Explorer 6 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a frameset with only one frame that calls resizeTo with certain arguments. NOTE: this issue might be related to CVE-2006-3637.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Explorer 4.0.1 Microsoft Internet Explorer 5.0.1 Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 5.5	4

References

http://www.securityfocus.com/archive/1/435990
http://www.securityfocus.com/archive/1/435168/30/4680/threaded
http://www.securityfocus.com/archive/1/435147/30/4680/threaded
http://www.securityfocus.com/archive/1/435004/30/4740/threaded
http://www.securityfocus.com/archive/1/434903/30/4800/threaded
http://www.securityfocus.com/archive/1/434742/30/4830/threaded