Lucene search

MitreCVE-2005-1791

HistoryJun 01, 2005 - 4:00 a.m.

CVE-2005-1791

2005-06-0104:00:00

mitre

web.nvd.nist.gov

microsoft

internet explorer

crash

uri

restricted zone

security vulnerability

cve-2005-1791

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

High

EPSS

0.002

Percentile

59.5%

JSON

Microsoft Internet Explorer 6 SP2 (6.0.2900.2180) crashes when the user attempts to add a URI to the restricted zone, in which the full domain name of the URI begins with numeric sequences similar to an IP address. NOTE: if there is not an exploit scenario in which an attacker can trigger this behavior, then perhaps this issue should not be included in CVE.

Affected configurations

Nvd

Node

microsoftieMatch6.0sp2

VendorProductVersionCPE
microsoftie6.0cpe:2.3:a:microsoft:ie:6.0:sp2:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	ie	6.0	cpe:2.3:a:microsoft:ie:6.0:sp2::::::

References

marc.info/?l=bugtraq&m=111746303509720&w=2

www.securityfocus.com/bid/13798

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

High

EPSS

0.002

Percentile

59.5%

JSON

Related for CVE-2005-1791