First published: Tue Jul 03 2007(Updated: )
** DISPUTED ** Microsoft Internet Explorer 6.0 and 7.0 allows remote attackers to fill Zones with arbitrary domains using certain metacharacters such as wildcards via JavaScript, which results in a denial of service (website suppression and resource consumption), aka "Internet Explorer Zone Domain Specification Dos and Page Suppressing". NOTE: this issue has been disputed by a third party, who states that the zone settings cannot be manipulated.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Ie | =6.0-sp1 | |
Microsoft Ie | =6.0-sp2 | |
Microsoft Internet Explorer | =6.0 | |
Microsoft Internet Explorer | =7.0 | |
Microsoft Internet Explorer | =7.0-beta1 | |
Microsoft Internet Explorer | =7.0-beta2 | |
Microsoft Internet Explorer | =7.0-beta3 | |
=6.0-sp1 | ||
=6.0-sp2 | ||
=6.0 | ||
=7.0 | ||
=7.0-beta1 | ||
=7.0-beta2 | ||
=7.0-beta3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.