CVE-2006-7065
Last modified
CVE-2006-7065 is a vulnerability of currently unknown severity. Microsoft Internet Explorer allows remote attackers to cause a denial of service (crash) via an IFRAME with a certain XML file and XSL stylesheet that triggers a crash in mshtml.dll when a refresh is called, probably a null pointer dereference.. EPSS estimates a 19.93% chance of exploitation in the next 30 days.
Description
Microsoft Internet Explorer allows remote attackers to cause a denial of service (crash) via an IFRAME with a certain XML file and XSL stylesheet that triggers a crash in mshtml.dll when a refresh is called, probably a null pointer dereference.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Ie | 6 | — |
| Microsoft | Ie | 6.0 | — |
| Microsoft | Ie | 7 | — |
| Microsoft | Ie | 7.0 | — |
| Microsoft | Internet Explorer | 6 | Sp1 |
| Microsoft | Internet Explorer | 6.0 | — |
| Microsoft | Internet Explorer | 6.0.2600 | — |
| Microsoft | Internet Explorer | 6.0.2800 | — |
| Microsoft | Internet Explorer | 6.0.2800.1106 | — |
| Microsoft | Internet Explorer | 6.0.2900 | — |
| Microsoft | Internet Explorer | 6.0.2900.2180 | — |
| Microsoft | Internet Explorer | 7.0 | Beta |
| Canon | Network Camera Server Vb101 | All versions | — |
References
- http://www.securityfocus.com/bid/19364Exploit, Vendor Advisory
- http://www.securityfocus.com/bid/19364Exploit, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2006-7065?
How severe is CVE-2006-7065?
How do I fix CVE-2006-7065?
Are you affected by CVE-2006-7065?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST