8.0.6001

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

microsoft

CWE-399

NVD

Published: 2008-09-18

Updated: 2021-07-23

Summary

Mshtml.dll in Microsoft Internet Explorer 7 Gold 7.0.5730 and 8 Beta 8.0.6001 on Windows XP SP2 allows remote attackers to cause a denial of service (failure of subsequent image rendering) via a crafted PNG file, related to an infinite loop in the CDwnTaskExec::ThreadExec function.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Explorer 7.0.5730 Microsoft Internet Explorer 8.0.6001	2
OS	Microsoft Microsoft Windows XP -	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://www.securityfocus.com/bid/31215
http://securityreason.com/securityalert/4273
https://exchange.xforce.ibmcloud.com/vulnerabilities/45225
http://www.securityfocus.com/archive/1/496483/100/0/threaded