CVE-2005-4717 vulnerability in Microsoft Products
Published on December 31, 2005

Microsoft Internet Explorer 6.0 on Windows NT 4.0 SP6a, Windows 2000 SP4, Windows XP SP1, Windows XP SP2, and Windows Server 2003 SP1 allows remote attackers to cause a denial of service (client crash) via a certain combination of a malformed HTML file and a CSS file that triggers a null dereference, probably related to rendering of a DIV element that contains a malformed IMG tag, as demonstrated by IEcrash.htm and IEcrash.rar.

NVD

Products Associated with CVE-2005-4717

Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.

Microsoft Internet Explorer (IE)

Microsoft Windows XP

Microsoft Windows 2000

Microsoft Windows Nt

Microsoft Windows 2003 Server

Exploit Probability

EPSS

14.73%

Percentile

94.38%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2005-4717 vulnerability in Microsoft ProductsPublished on December 31, 2005

Products Associated with CVE-2005-4717

Exploit Probability

CVE-2005-4717 vulnerability in Microsoft Products
Published on December 31, 2005