VDB
CVE-2005-1790
CVE-2005-1790
PUBLISHED
CVSS 2.5999999046325684 LOW
Microsoft Internet Explorer 6 SP2 6.0.2900.2180 and 6.0.2800.1106, and earlier versions, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Javascript BODY onload event that calls the window function, aka "Mismatched Document Object Model Objects Memory Corruption Vulnerability."
EPSS 81.64% · 99.2th percentile
Risk Scores
CVSS 2.0
2.5999999046325684
EPSS Score
81.64%
99.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| microsoft | internet_explorer | 6.0.2800.1106, 6.0.2900.2180 |
Timeline
- Jun 1, 2005 CVE Published
- Jan 14, 2012 PoC Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 18064 third-party-advisory
- 15546 third-party-advisory
- oval:org.mitre.oval:def:1508 vdb
- oval:org.mitre.oval:def:1489 vdb
- 13799 vdb
- VU#887861 third-party-advisory
- 20050528 Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005) mailing-list
- 20051121 Computer Terrorism Security Advisory (Reclassification) - Microsoft Internet Explorer JavaScript Window() Vulnerability mailing-list
- TA05-347A third-party-advisory
- MS05-054 vendor-advisory
- 20050530 Re: Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005) mailing-list
- oval:org.mitre.oval:def:1303 vdb
- http://www.computerterrorism.com/research/ie/ct21-11-2005 url
- http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf url
- 15368 third-party-advisory
- ADV-2005-2909 vdb
- oval:org.mitre.oval:def:1299 vdb
- 18311 third-party-advisory
- oval:org.mitre.oval:def:722 vdb
- ADV-2005-2867 vdb
…and 5 more