Microsoft IE with Google Toolbar Malicious HTML DoS

2002-08-15T00:00:00
ID OSVDB:7898
Type osvdb
Reporter Adam Baszczyk()
Modified 2002-08-15T00:00:00

Description

Vulnerability Description

Internet Explorer when combined with the Google Toolbar contains a flaw that may allow a remote denial of service. The issue is triggered when viewing of malicious HTML occurs, and will result in Internet Explorer Browser crashing.

Technical Description

This vulnerability is only present when Google Toolbar is used in conjunction with Microsoft Internet Explorer. Neither product is vulnerable by themselves.

Solution Description

Upgrade to Google Toolbar version 2.0.113 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Internet Explorer when combined with the Google Toolbar contains a flaw that may allow a remote denial of service. The issue is triggered when viewing of malicious HTML occurs, and will result in Internet Explorer Browser crashing.

References:

Vendor Specific News/Changelog Entry: http://toolbar.google.com/whatsnew.php3 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-08/0133.html ISS X-Force ID: 9883 CVE-2002-1444 Bugtraq ID: 5477