CVE-2006-0544

Microsoft IE - Denial of Service

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0544. PoCs published by Tom Ferris.

AI-analyzed exploit summary This exploit triggers a Denial of Service (DoS) in Internet Explorer 7.0 Beta 2 by leveraging a vulnerability in urlmon.dll via an excessively long string in the BGSOUND SRC attribute. The exploit causes the browser to crash due to improper handling of the input.

Description

urlmon.dll in Microsoft Internet Explorer 7.0 beta 2 (aka 7.0.5296.0) allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a BGSOUND element with its SRC attribute set to "file://" followed by a large number of "-" (dash of hyphen) characters.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Tom Ferris · htmldoswindows

https://www.exploit-db.com/exploits/1475

View Code ZIP pw:eip

This exploit triggers a Denial of Service (DoS) in Internet Explorer 7.0 Beta 2 by leveraging a vulnerability in urlmon.dll via an excessively long string in the BGSOUND SRC attribute. The exploit causes the browser to crash due to improper handling of the input.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Internet Explorer 7.0 Beta 2 (urlmon.dll)

No auth needed

Prerequisites: Internet Explorer 7.0 Beta 2 on Windows XP SP2

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory x_refsource_misc

http://www.security-protocols.com/advisory/sp-x23-advisory.txt

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/16463

Scores

EPSS 0.2207

EPSS Percentile 97.4%

Details

Status published

Products (1)

microsoft/ie 7.0 beta_2

Published Feb 04, 2006

Tracked Since Feb 18, 2026