Microsoft Internet Explorer 5.0 up to and including 6.0 allows remote malicious users to cause a denial of service (crash) via an object of type "text/html" with the DATA field that identifies the HTML document that contains the object, which may cause infinite recursion.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet explorer 5.0 |
||
microsoft internet explorer 5.5 |
||
microsoft internet explorer 6.0 |
||
microsoft ie 6.0 |