Microsoft Internet Explorer 6.0 SP1 on Windows 2000, and 6.0 SP2 on Windows XP, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an HTML document containing a certain JavaScript for loop with an empty loop body, possibly involving getElementById.
CPE | Name | Operator | Version |
---|---|---|---|
ie | eq | 6 windows-2000 | |
ie | eq | 6.0 sp2windowsxp |