Back to search
CVE-2009-2655
Published: Aug 3, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
mshtml.dll in Microsoft Internet Explorer 7 and 8 on Windows XP SP3 allows remote attackers to cause a denial of service (application crash) by calling the JavaScript findText method with a crafted Unicode string in the first argument, and only one additional argument, as demonstrated by a second argument of -1.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
35799
vdb-entry
x_refsource_BID
ms-ie-mshtml-dos(52249)
vdb-entry
x_refsource_XF
oval:org.mitre.oval:def:12700
vdb-entry
signature
x_refsource_OVAL
9253
exploit
x_refsource_EXPLOIT-DB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now