CVE-2009-2576

CWE-3993 documents3 sources
Severity
5.0MEDIUM
EPSS
30.1%
top 3.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft Internet ExplorerMicrosoft IE
Timeline
PublishedJul 22
Latest updateMay 2

Description

Microsoft Internet Explorer 6.0.2900.2180 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a long Unicode string argument to the write method, a related issue to CVE-2009-2479. NOTE: it was later reported that 7.0.6000.16473 and earlier are also affected.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDmicrosoft/internet_explorer6.0.2900.2180+55
NVDmicrosoft/ie25 versions+24

🔴Vulnerability Details

2
GHSA
GHSA-9q9v-fv5g-fj8r: Microsoft Internet Explorer 62022-05-02
CVEList
CVE-2009-2576: Microsoft Internet Explorer 62009-07-22
CVE-2009-2576 (MEDIUM CVSS 5) | Microsoft Internet Explorer 6.0.290 | cvebase.io