Denial of Service Vulnerability in Microsoft Internet Explorer
CVE-2010-2118

Currently unrated

Key Information:

Vendor: Microsoft
Status: Ie; Internet Explorer
Vendor: CVE Published:; 1 June 2010

Summary

This vulnerability in Microsoft Internet Explorer allows remote attackers to execute malicious JavaScript that can create an infinite loop via IFRAME elements linked to invalid news:// URIs. Successful exploitation can lead to significant resource consumption, potentially rendering the browser unresponsive.

References

http://websecurity.com.ua/4238/

x_refsource_MISC

http://www.securityfocus.com/archive/1/511509/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

16% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 1, 2010
Vulnerability Reserved
Jun 1, 2010