CVE-2002-1714

Published: Dec 31, 2002Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Microsoft Internet Explorer 5.0 through 6.0 allows remote attackers to cause a denial of service (crash) via an object of type "text/html" with the DATA field that identifies the HTML document that contains the object, which may cause infinite recursion.

Affected (6)

Products: Microsoft: Ie, Internet Explorer

Microsoft

2 products

Internet Explorer

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Microsoft Ie	Version 6.0 sp1
Microsoft Internet Explorer	Version 5.0
Microsoft Internet Explorer	Version 5.5
Microsoft Internet Explorer	Version 5.5 sp1
Microsoft Internet Explorer	Version 5.5 sp2
Microsoft Internet Explorer	Version 6.0

References (6)

http://online.securityfocus.com/archive/1/268776

Source: cve@mitre.org

http://www.securityfocus.com/bid/4564

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/8904

Source: cve@mitre.org

http://online.securityfocus.com/archive/1/268776

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/4564

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/8904

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.