CVE-2002-0461

Microsoft Internet Explorer - Denial of Service

Title source: rule

Description

Internet Explorer 5.01 through 6 allows remote attackers to cause a denial of service (application crash) via Javascript in a web page that calls location.replace on itself, causing a loop.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Patrik Birgersson · htmldoswindows

https://www.exploit-db.com/exploits/21346

View Code ZIP pw:eip

References (3)

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/4322

[Vendor Advisory] http://online.securityfocus.com/archive/1/262994

[Vendor Advisory] http://www.iss.net/security_center/static/8488.php

Scores

EPSS 0.1075

EPSS Percentile 93.4%

Details

Status published

Products (3)

microsoft/internet_explorer 5.0.1 (3 CPE variants)

microsoft/internet_explorer 5.5 (3 CPE variants)

microsoft/internet_explorer 6.0

Published Aug 12, 2002

Tracked Since Feb 18, 2026