CVE-2006-6311

Microsoft Internet Explorer 6.0.2900.2180 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6311. PoCs published by xiam.core.

AI-analyzed exploit summary This exploit triggers a denial-of-service (DoS) in Microsoft Internet Explorer 6 and 7 by using a malformed CSS expression with a recursive `window.open` call. The exploit crashes the browser when the victim visits the malicious webpage.

Description

Microsoft Internet Explorer 6.0.2900.2180 allows remote attackers to cause a denial of service via a style attribute in an HTML table tag with a width value that is dynamically calculated using JavaScript.

Exploits (1)

exploitdb WORKING POC VERIFIED

by xiam.core · htmldoswindows

https://www.exploit-db.com/exploits/29236

View Code ZIP pw:eip

This exploit triggers a denial-of-service (DoS) in Microsoft Internet Explorer 6 and 7 by using a malformed CSS expression with a recursive `window.open` call. The exploit crashes the browser when the victim visits the malicious webpage.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Internet Explorer 6 and 7

No auth needed

Prerequisites: Victim must visit a malicious webpage

MITRE ATT&CK