Vulnerability Description
The Google toolbar 1.1.60, when running on Internet Explorer 5.5 and 6.0, allows remote attackers to cause a denial of service (crash with an exception in oleaut32.dll) via malicious HTML, possibly related to small width and height parameters or an incorrect call to the Google.Search() function.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Toolbar | 1.1.60 | |
| Microsoft | Internet Explorer | 5.5 |
References
- http://online.securityfocus.com/archive/1/287498Exploit
- http://www.iss.net/security_center/static/9883.php
- http://www.securityfocus.com/bid/5477Exploit
- http://www.sztolnia.pl/hack/googIE/googIE.htmlExploit
- http://online.securityfocus.com/archive/1/287498Exploit
- http://www.iss.net/security_center/static/9883.php
- http://www.securityfocus.com/bid/5477Exploit
- http://www.sztolnia.pl/hack/googIE/googIE.htmlExploit
FAQ
What is CVE-2002-1444?
CVE-2002-1444 is a vulnerability with a CVSS score of 2.6 (LOW). The Google toolbar 1.1.60, when running on Internet Explorer 5.5 and 6.0, allows remote attackers to cause a denial of service (crash with an exception in oleaut32.dll) via malicious HTML, possibly re...
How severe is CVE-2002-1444?
CVE-2002-1444 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1444?
Check the references section above for vendor advisories and patch information. Affected products include: Google Toolbar, Microsoft Internet Explorer.