Denial of Service Vulnerability in Google Toolbar for Internet Explorer
CVE-2002-1444

Currently unrated

Key Information:

Vendor: Google
Status: Toolbar; Internet Explorer
Vendor: CVE Published:; 15 August 2002

Summary

The Google Toolbar version 1.1.60, when used with Internet Explorer versions 5.5 and 6.0, is prone to a denial of service vulnerability. This flaw allows remote attackers to crash the browser by delivering specially crafted HTML content, which triggers an exception in the oleaut32.dll component. The vulnerability may be exploited by manipulating specific parameters such as width and height or through an erroneous invocation of the Google.Search() function, leading to a degraded user experience and significant disruption.

References

http://www.iss.net/security_center/static/9883.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/5477

vdb-entryx_refsource_BID

http://www.sztolnia.pl/hack/googIE/googIE.html

x_refsource_MISC

EPSS Score

15% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Feb 5, 2003
Vulnerability published
Aug 15, 2002