CVE-2001-0322

Microsoft Internet Explorer - Denial of Service

Title source: rule

Description

MSHTML.DLL HTML parser in Internet Explorer 4.0, and other versions, allows remote attackers to cause a denial of service (application crash) via a script that creates and deletes an object that is associated with the browser window object.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Thor Larholm · htmldoswindows

https://www.exploit-db.com/exploits/20552

View Code ZIP pw:eip

References (3)

[Exploit, Vendor Advisory] http://www.securityfocus.com/bid/2202

[Mailing List] http://marc.info/?l=bugtraq&m=97958685100219&w=2

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/5938

Scores

EPSS 0.1250

EPSS Percentile 94.0%

Details

Status published

Products (3)

microsoft/internet_explorer 4.0

microsoft/outlook 2000

microsoft/outlook_express 5.5

Published Jun 02, 2001

Tracked Since Feb 18, 2026