Microsoft IE CSS Memory Corruption DoS

2004-07-25T03:16:15
ID OSVDB:8224
Type osvdb
Reporter Phuong Nguyen(phuong@ecqurity.com)
Modified 2004-07-25T03:16:15

Description

Vulnerability Description

Microsoft Internet Explorer contains a flaw that may allow a remote denial of service. The issue is triggered when a attacker creates a web page utilizing specially crafted Cascading Style Sheet (CSS) elements, and will result in loss of availability for the victims web browser.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Microsoft Internet Explorer contains a flaw that may allow a remote denial of service. The issue is triggered when a attacker creates a web page utilizing specially crafted Cascading Style Sheet (CSS) elements, and will result in loss of availability for the victims web browser.

References:

Vendor URL: http://www.microsoft.com Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0960.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-07/1050.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-07/1125.html Keyword: "Crash IE with 11 bytes" ISS X-Force ID: 16189 CVE-2004-0484