Vulnerability CVE-2002-1444


Published: 2002-08-15   Modified: 2012-02-12

Description:
The Google toolbar 1.1.60, when running on Internet Explorer 5.5 and 6.0, allows remote attackers to cause a denial of service (crash with an exception in oleaut32.dll) via malicious HTML, possibly related to small width and height parameters or an incorrect call to the Google.Search() function.

CVSS2 => (AV:N/AC:H/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.6/10
2.9/10
4.9/10
Exploit range
Attack complexity
Authentication
Remote
High
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Microsoft -> IE 
Google -> Toolbar 

 References:
http://www.sztolnia.pl/hack/googIE/googIE.html
http://www.securityfocus.com/bid/5477
http://www.iss.net/security_center/static/9883.php
http://online.securityfocus.com/archive/1/287498

Copyright 2020, cxsecurity.com

 

Back to Top