Lucene search

[email protected]NVD:CVE-2004-2011

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2011

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.004

Percentile

73.3%

JSON

msxml3.dll in Internet Explorer 6.0.2600.0 allows remote attackers to cause a denial of service (crash) via a single & (ampersand) in a <Ref href> link, which triggers a parsing error, possibly due to missing portions of the URI.

Affected configurations

Nvd

Node

microsoftinternet_explorerMatch6.0.2600

VendorProductVersionCPE
microsoftinternet_explorer6.0.2600cpe:2.3:a:microsoft:internet_explorer:6.0.2600:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	internet_explorer	6.0.2600	cpe:2.3:a:microsoft:internet_explorer:6.0.2600:::::::*

References

marc.info/?l=bugtraq&m=108422549617947&w=2

exchange.xforce.ibmcloud.com/vulnerabilities/16112

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.004

Percentile

73.3%

JSON

Related for NVD:CVE-2004-2011

cvelist1 cve1