Microsoft Internet Explorer 6.0 and 7.0 allows remote attackers to fill Zones with arbitrary domains using certain metacharacters such as wildcards via JavaScript, which results in a denial of service (website suppression and resource consumption), aka "Internet Explorer Zone Domain Specification Dos and Page Suppressing". NOTE: this issue has been disputed by a third party, who states that the zone settings cannot be manipulated
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 02:00
Type | Values Removed | Values Added |
---|---|---|
Summary | Microsoft Internet Explorer 6.0 and 7.0 allows remote attackers to fill Zones with arbitrary domains using certain metacharacters such as wildcards via JavaScript, which results in a denial of service (website suppression and resource consumption), aka "Internet Explorer Zone Domain Specification Dos and Page Suppressing". NOTE: this issue has been disputed by a third party, who states that the zone settings cannot be manipulated |
23 Jul 2021, 15:06
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:microsoft:ie:7.0:beta3:*:*:*:*:*:* cpe:2.3:a:microsoft:ie:7.0:beta1:*:*:*:*:*:* cpe:2.3:a:microsoft:ie:6.0:*:*:*:*:*:*:* cpe:2.3:a:microsoft:ie:7.0:*:*:*:*:*:*:* |
cpe:2.3:a:microsoft:internet_explorer:7.0:beta3:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:7.0:beta1:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:7.0:beta2:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:7.0:*:*:*:*:*:*:* |
Information
Published : 2007-07-03 21:30
Updated : 2024-04-11 00:42
NVD link : CVE-2007-3550
Mitre link : CVE-2007-3550
CVE.ORG link : CVE-2007-3550
JSON object : View
Products Affected
microsoft
- ie
- internet_explorer
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')