CVE-2005-4717
Last modified
CVE-2005-4717 is a vulnerability of currently unknown severity. Microsoft Internet Explorer 6.0 on Windows NT 4.0 SP6a, Windows 2000 SP4, Windows XP SP1, Windows XP SP2, and Windows Server 2003 SP1 allows remote attackers to cause a denial of service (client crash) via a certain combination of a malformed HTML file and a CSS file that triggers a null dereference, probably related to rendering of a DIV element that contains a malformed IMG tag, as demonstrated by IEcrash.htm and IEcrash.rar.. EPSS estimates a 19.48% chance of exploitation in the next 30 days.
Description
Microsoft Internet Explorer 6.0 on Windows NT 4.0 SP6a, Windows 2000 SP4, Windows XP SP1, Windows XP SP2, and Windows Server 2003 SP1 allows remote attackers to cause a denial of service (client crash) via a certain combination of a malformed HTML file and a CSS file that triggers a null dereference, probably related to rendering of a DIV element that contains a malformed IMG tag, as demonstrated by IEcrash.htm and IEcrash.rar.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Ie | 6.0 | Sp1 |
| Microsoft | Internet Explorer | 6.0 | — |
| Microsoft | Windows 2000 | All versions | Sp4 |
| Microsoft | Windows 2003 Server | sp1 | — |
| Microsoft | Windows Nt | 4.0 | Sp6a |
| Microsoft | Windows Xp | All versions | Sp1 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2005-4717?
How severe is CVE-2005-4717?
How do I fix CVE-2005-4717?
Are you affected by CVE-2005-4717?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST