Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-7031Microsoft Internet Explorer vulnerability

3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
24.6%
top 3.85%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedFeb 23
Latest updateMay 1

Description

Microsoft Internet Explorer 6.0.2900 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a table element with a CSS attribute that sets the position, which triggers an "unhandled exception" in mshtml.dll.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-wgx9-77w5-x2hw: Microsoft Internet Explorer 62022-05-01

💥Exploits & PoCs

1
Exploit-DB
Microsoft Internet Explorer 6.0.2900 SP2 - CSS Attribute Denial of Service2006-05-10
CVE-2006-7031 — Microsoft vulnerability | cvebase