CVE-2006-7066

Current Description

Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) by creating an object inside an iframe, deleting the frame by setting its location.href to about:blank, then accessing a property of the object within the deleted frame, which triggers a NULL pointer dereference. NOTE: it was later reported that 7.0.6000.16473 and earlier are also affected.

Basic Data

PublishedMarch 02, 2007
Last ModifiedJuly 29, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:M/Au:N/C:N/I:N/A:C
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score7.1
SeverityHIGH
Exploitability Score8.6
Impact Score6.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • AND
    • OR - Configuration 1
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3OSMicrosoftWindows Xp*sp2*fr****
    • OR Running on/with:
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationMicrosoftIe6.0*******
      2.3ApplicationMicrosoftIe6.0sp1******

Vulnerable Software List

VendorProductVersions
Microsoft Ie 6.0

References

NameSourceURLTags
20090725 DoS vulnerabilities in Internet Explorerhttp://archives.neohapsis.com/archives/bugtraq/2009-07/0193.htmlBUGTRAQ
http://blogs.securiteam.com/index.php/archives/554http://blogs.securiteam.com/index.php/archives/554MISCPATCH
http://browserfun.blogspot.com/2006/07/mobb-30-orphan-object-properties.htmlhttp://browserfun.blogspot.com/2006/07/mobb-30-orphan-object-properties.htmlMISCExploit
http://websecurity.com.ua/3130/http://websecurity.com.ua/3130/MISC
27533http://www.osvdb.org/27533OSVDB
19228http://www.securityfocus.com/bid/19228BIDExploit
ie-deleted-frame-dos(28068)https://exchange.xforce.ibmcloud.com/vulnerabilities/28068XF