Microsoft Internet Explorer 6.0.2900 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a table element with a CSS attribute that sets the position, which triggers an "unhandled exception" in mshtml.dll.
2007-02-23T03:28:00.000
2025-04-09T00:30:58.490
Deferred
CVSSv3.1: 6.5 (MEDIUM)
AV:N/AC:L/Au:N/C:N/I:N/A:P
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | microsoft | windows_2000 | * | No |
| Operating System | microsoft | windows_2003_server | * | No |
| Operating System | microsoft | windows_2003_server | gold | No |
| Operating System | microsoft | windows_2003_server | r2 | No |
| Operating System | microsoft | windows_2003_server | sp2 | No |
| Operating System | microsoft | windows_95 | * | No |
| Operating System | microsoft | windows_98 | * | No |
| Operating System | microsoft | windows_embedded_compact | * | No |
| Operating System | microsoft | windows_me | * | No |
| Operating System | microsoft | windows_nt | * | No |
| Operating System | microsoft | windows_vista | * | No |
| Operating System | microsoft | windows_xp | * | No |
| Application | microsoft | internet_explorer | ≤ 6.0.2900 | Yes |