CVE-2006-7066

Published: 02/03/2007 Updated: 13/12/2021

CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6

VMScore: 715

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Microsoft Internet Explorer 6 on Windows XP SP2 allows remote malicious users to cause a denial of service (crash) by creating an object inside an iframe, deleting the frame by setting its location.href to about:blank, then accessing a property of the object within the deleted frame, which triggers a NULL pointer dereference. NOTE: it was later reported that 7.0.6000.16473 and previous versions are also affected.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet_explorer 6.0

source: wwwsecurityfocuscom/bid/19228/info Microsoft Internet Explorer is prone to a denial-of-service vulnerability This issue is triggered when an attacker convinces a victim user to visit a malicious website Remote attackers may exploit this issue to crash Internet Explorer, effectively denying service to legitimate users // MoBB ...

NVD-CWE-Other http://blogs.securiteam.com/index.php/archives/554 http://browserfun.blogspot.com/2006/07/mobb-30-orphan-object-properties.html http://www.securityfocus.com/bid/19228 http://www.osvdb.org/27533 http://archives.neohapsis.com/archives/bugtraq/2009-07/0193.html http://websecurity.com.ua/3130/https://exchange.xforce.ibmcloud.com/vulnerabilities/28068 https://nvd.nist.gov https://www.exploit-db.com/exploits/28301/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-7066

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect