CVE-2007-2161 — Microsoft Internet Explorer vulnerability

2 documents2 sources

Severity

4.3MEDIUMNVD

EPSS

32.1%

top 3.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Explorer

Timeline

PublishedApr 22

Latest updateMay 1

Description

Microsoft Internet Explorer 7 allows remote attackers to cause a denial of service (browser hang) via JavaScript that matches a regular expression against a long string, as demonstrated using /(.)*/.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/internet_explorer7.0

🔴Vulnerability Details

GHSA

GHSA-wr3m-ccvr-j929: Microsoft Internet Explorer 7 allows remote attackers to cause a denial of service (browser hang) via JavaScript that matches a regular expression aga↗2022-05-01

▶