Description
MSHTML.DLL HTML parser in Internet Explorer 4.0, and other versions, allows remote attackers to cause a denial of service (application crash) via a script that creates and deletes an object that is associated with the browser window object.
Affected products
- Microsoft / internet_explorer4.0 – 4.0
- Microsoft / Outlook2000 – 2000
- Microsoft / outlook_express5.5 – 5.5