Vulnerabilities > CVE-2007-0811 - Unspecified vulnerability in Microsoft IE 6/6.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
exploit available
Summary
Microsoft Internet Explorer 6.0 SP1 on Windows 2000, and 6.0 SP2 on Windows XP, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an HTML document containing a certain JavaScript for loop with an empty loop body, possibly involving getElementById.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | MS Internet Explorer 6 (mshtml.dll) Null Pointer Dereference Exploit. CVE-2007-0811. Dos exploit for windows platform |
| file | exploits/windows/dos/3272.html |
| id | EDB-ID:3272 |
| last seen | 2016-01-31 |
| modified | 2007-02-05 |
| platform | windows |
| port | |
| published | 2007-02-05 |
| reporter | AmesianX |
| source | https://www.exploit-db.com/download/3272/ |
| title | Microsoft Internet Explorer 6 mshtml.dll Null Pointer Dereference Exploit |
| type | dos |
References
- http://osvdb.org/37636
- http://osvdb.org/37636
- http://www.powerhacker.net/exploit/IE_NULL_CRASH.html
- http://www.powerhacker.net/exploit/IE_NULL_CRASH.html
- http://www.securityfocus.com/bid/22408
- http://www.securityfocus.com/bid/22408
- https://www.exploit-db.com/exploits/3272
- https://www.exploit-db.com/exploits/3272