CVE-2004-2434

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 6.0 SP1

Description: The issue allows remote attackers to cause a denial of service, resulting in a browser crash. This occurs when a user attempts to save a link containing "::{" using the "Save As" function, triggering a null dereference as the browser prepares an error message with an attacker-controlled format string.

Recommendations: For Microsoft Internet Explorer version 6.0 SP1, consider avoiding the use of the "Save As" function on links containing suspicious characters until a fix is available. As a temporary workaround, restrict the saving of links with unusual formats to minimize the risk of exploitation.