Vulnerability Details CVE-2006-7029
Microsoft Internet Explorer 6 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a frameset with only one frame that calls resizeTo with certain arguments. NOTE: this issue might be related to CVE-2006-3637.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.301
EPSS Ranking 96.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/archive/1/434742/30/4830/threaded
- http://www.securityfocus.com/archive/1/434903/30/4800/threaded
- http://www.securityfocus.com/archive/1/435004/30/4740/threaded
- http://www.securityfocus.com/archive/1/435147/30/4680/threaded
- http://www.securityfocus.com/archive/1/435168/30/4680/threaded
- http://www.securityfocus.com/archive/1/435990
- http://www.securityfocus.com/archive/1/434742/30/4830/threaded
- http://www.securityfocus.com/archive/1/434903/30/4800/threaded
- http://www.securityfocus.com/archive/1/435004/30/4740/threaded
- http://www.securityfocus.com/archive/1/435147/30/4680/threaded
- http://www.securityfocus.com/archive/1/435168/30/4680/threaded
- http://www.securityfocus.com/archive/1/435990
Products affected by CVE-2006-7029
-
cpe:2.3:a:microsoft:internet_explorer:4.0.1
-
cpe:2.3:a:microsoft:internet_explorer:5.0.1
-
cpe:2.3:a:microsoft:internet_explorer:5.01
-
cpe:2.3:a:microsoft:internet_explorer:5.5