1. Home
  2. CVE Database
  3. CVE-2006-7031
MEDIUM · 6.5

CVE-2006-7031

Microsoft Internet Explorer 6.0.2900 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a table element with a CSS attribute that sets the position, which triggers an "un...

Vulnerability Description

Microsoft Internet Explorer 6.0.2900 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a table element with a CSS attribute that sets the position, which triggers an "unhandled exception" in mshtml.dll.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
MicrosoftWindows 2000All versions
MicrosoftWindows 2003 ServerAll versions
MicrosoftWindows 95All versions
MicrosoftWindows 98All versions
MicrosoftWindows Embedded CompactAll versions
MicrosoftWindows MeAll versions
MicrosoftWindows NtAll versions
MicrosoftWindows VistaAll versions
MicrosoftWindows XpAll versions
MicrosoftInternet Explorer<= 6.0.2900

References

FAQ

What is CVE-2006-7031?

CVE-2006-7031 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Microsoft Internet Explorer 6.0.2900 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a table element with a CSS attribute that sets the position, which triggers an "un...

How severe is CVE-2006-7031?

CVE-2006-7031 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-7031?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows 2003 Server, Microsoft Windows 95, Microsoft Windows 98, Microsoft Windows Embedded Compact.