CVE-2006-4888

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in an application hang. This occurs when a CSS-formatted HTML INPUT element is placed within a DIV element that has a larger size than the INPUT.

Recommendations For Microsoft Internet Explorer versions 6 and earlier, consider avoiding the use of CSS-formatted HTML INPUT elements within larger DIV elements until a fix is available. As a temporary workaround, restrict the size of DIV elements to match or be smaller than the INPUT elements they contain.