PT-2002-2298 · Microsoft+1 · Internet Explorer+2

Publicado

2002-08-15

Atualizado

2021-07-23

CVE-2002-1444

CVSS v2.0

2.6

Baixa

Vetor

AV:N/AC:H/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Google toolbar version 1.1.60 Internet Explorer versions 5.5 through 6.0

Description The issue allows remote attackers to cause a denial of service, resulting in a crash with an exception in oleaut32.dll, via malicious HTML. This could be related to small width and height parameters or an incorrect call to the Google.Search() function.

Recommendations For Google toolbar version 1.1.60, consider avoiding the use of small width and height parameters in HTML until a fix is available. For Internet Explorer versions 5.5 through 6.0, restrict the use of the Google toolbar until the issue is resolved. As a temporary workaround, consider disabling the Google.Search() function in the Google toolbar until a patch is available.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-1444

Produtos afetados

Google Toolbar

Internet Explorer

Oleaut32.Dll

PT-2002-2298 · Microsoft+1 · Internet Explorer+2

CVE-2002-1444

Identificadores relacionados

Produtos afetados

Referências · 6