Microsoft IE wininet.dll Content-Type DoS

2006-07-22T00:38:59
ID OSVDB:29129
Type osvdb
Reporter Firestorm()
Modified 2006-07-22T00:38:59

Description

Vulnerability Description

Internet Explorer contains a flaw that may allow a remote denial of service. The issue is triggered when a user accesses a malicious web page that contains a long value of the content-type parameter, and will result in loss of availability for the browser.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Internet Explorer contains a flaw that may allow a remote denial of service. The issue is triggered when a user accesses a malicious web page that contains a long value of the content-type parameter, and will result in loss of availability for the browser.

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0379.html ISS X-Force ID: 27900 Generic Exploit URL: http://www.milw0rm.com/exploits/2039 FrSIRT Advisory: ADV-2006-2917 CVE-2006-5162 Bugtraq ID: 19092