K
kayodeok
Microsoft Internet Explorer Scrollbar-Base-Color Partial Denial Of
Service Vulnerability
http://www.securityfocus.com/bid/8874/discussion/
"It has been reported that Microsoft Internet Explorer is prone to a
vulnerability that may allow an attacker to cause a denial of service
condition in the software. The problem occurs due to improper
handling of scrollbar-base-color attribute of the div object.
Successful exploitation of this issue may allow an attacker to create
a webpage containing malicious script code that would cause a user's
browser to crash upon visiting the site.
Microsoft Internet Explorer 6.0 has been reported to be vulnerable to
this issue, however other versions may be affected as well."
Proof of Concept at:
http://www.securityfocus.com/bid/8874/exploit/
Service Vulnerability
http://www.securityfocus.com/bid/8874/discussion/
"It has been reported that Microsoft Internet Explorer is prone to a
vulnerability that may allow an attacker to cause a denial of service
condition in the software. The problem occurs due to improper
handling of scrollbar-base-color attribute of the div object.
Successful exploitation of this issue may allow an attacker to create
a webpage containing malicious script code that would cause a user's
browser to crash upon visiting the site.
Microsoft Internet Explorer 6.0 has been reported to be vulnerable to
this issue, however other versions may be affected as well."
Proof of Concept at:
http://www.securityfocus.com/bid/8874/exploit/