CVE-2006-2538

Name of the Vulnerable Software and Affected Versions IE Tab plugin version 1.0.9 for Mozilla Firefox version 1.5.0.3

Description The issue allows remote user-assisted attackers to cause a denial of service, potentially due to a null dereference, via certain Javascript. This can be demonstrated using a url parameter to the "content/reloaded.html" page in a "chrome://" URI. Some researchers claim they are unable to reproduce this issue.

Recommendations For IE Tab plugin version 1.0.9, consider avoiding the use of certain Javascript that may cause a denial of service until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.