CVE-2003-1048
HIGHMicrosoft Internet Explorer - Double Free
Title source: ruleDescription
Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service (application crash) via a malformed GIF image.
References (16)
Scores
CVSS v3
7.8
EPSS
0.4717
EPSS Percentile
97.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Classification
CWE
CWE-415
Status
draft
Affected Products (18)
microsoft/internet_explorer
microsoft/internet_explorer
microsoft/internet_explorer
microsoft/internet_explorer
microsoft/internet_explorer
microsoft/internet_explorer
microsoft/outlook
microsoft/outlook
microsoft/outlook
microsoft/windows_98
microsoft/windows_98se
microsoft/windows_me
microsoft/windows_nt
microsoft/windows_nt
microsoft/windows_nt
... and 3 more
Timeline
Published
Jul 27, 2004
Tracked Since
Feb 18, 2026