Denial of Service : Microsoft Internet Explorer Unicode String DoS Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.900400

Categoría: Denial of Service

Título: Microsoft Internet Explorer Unicode String DoS Vulnerability

Resumen: Internet Explorer is prone to a denial of service (DoS) vulnerability.

Descripción: Summary:
Internet Explorer is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
Error exists when application fails to handle user supplied
input into the 'write' method via a long Unicode string argument.

Vulnerability Impact:
Successful exploitation lets the attacker to cause memory or CPU
consumption, resulting in Denial of Service condition.

Affected Software/OS:
Microsoft Internet Explorer version 6.0.2900.2180 and prior.

Solution:
No known solution was made available for at least one year since the disclosure
of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer
release, disable respective features, remove the product or replace the product by another one.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-2576
Bugtraq: 20090719 DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome (Google Search)
http://www.securityfocus.com/archive/1/505092/100/0/threaded
Bugtraq: 20090720 RE: DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome (Google Search)
http://www.securityfocus.com/archive/1/505120/100/0/threaded
Bugtraq: 20090725 Re: DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome (Google Search)
http://www.securityfocus.com/archive/1/505122/100/0/threaded
Bugtraq: 20090725 DoS vulnerabilities in Internet Explorer (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2009-07/0193.html
http://archives.neohapsis.com/archives/bugtraq/2009-07/0192.html
http://websecurity.com.ua/3338/

Copyright Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.900400
Categoría:	Denial of Service
Título:	Microsoft Internet Explorer Unicode String DoS Vulnerability
Resumen:	Internet Explorer is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Internet Explorer is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: Error exists when application fails to handle user supplied input into the 'write' method via a long Unicode string argument. Vulnerability Impact: Successful exploitation lets the attacker to cause memory or CPU consumption, resulting in Denial of Service condition. Affected Software/OS: Microsoft Internet Explorer version 6.0.2900.2180 and prior. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2576 Bugtraq: 20090719 DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome (Google Search) http://www.securityfocus.com/archive/1/505092/100/0/threaded Bugtraq: 20090720 RE: DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome (Google Search) http://www.securityfocus.com/archive/1/505120/100/0/threaded Bugtraq: 20090725 Re: DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome (Google Search) http://www.securityfocus.com/archive/1/505122/100/0/threaded Bugtraq: 20090725 DoS vulnerabilities in Internet Explorer (Google Search) http://archives.neohapsis.com/archives/bugtraq/2009-07/0193.html http://archives.neohapsis.com/archives/bugtraq/2009-07/0192.html http://websecurity.com.ua/3338/
Copyright	Copyright (C) 2009 Greenbone AG