5

CVE-2005-4717

Exploit

EPSS 19.89%
Published 31.12.2005 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Microsoft Internet Explorer 6.0 on Windows NT 4.0 SP6a, Windows 2000 SP4, Windows XP SP1, Windows XP SP2, and Windows Server 2003 SP1 allows remote attackers to cause a denial of service (client crash) via a certain combination of a malformed HTML file and a CSS file that triggers a null dereference, probably related to rendering of a DIV element that contains a malformed IMG tag, as demonstrated by IEcrash.htm and IEcrash.rar.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Ie Version6.0 Updatesp1

Microsoft ≫ Ie Version6.0 Updatesp2

Microsoft ≫ Internet Explorer Version6.0

Microsoft ≫ Windows 2000 Updatesp4 Langfr

Microsoft ≫ Windows 2003 Server Versionsp1

Microsoft ≫ Windows Nt Version4.0 Updatesp6a

Microsoft ≫ Windows Xp Updatesp1 Editiontablet_pc

Microsoft ≫ Windows Xp Updatesp2 Editiontablet_pc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	19.89%	0.953

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0673.html

Exploit

http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0127.html

http://www.securityfocus.com/bid/15268

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2005-4717

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-4717

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-4717

EUVD