CVE-2009-2576

Microsoft Internet Explorer 6.0.2900.2180 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a long Unicode string argument to the write method, a related issue to CVE-2009-2479.  NOTE: it was later reported that 7.0.6000.16473 and earlier are also affected.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
VendorProductVersion
microsoftie
*
microsoftie
*
microsoftie
2.0
microsoftie
2.0_beta:_beta
microsoftie
3.0
microsoftie
3.0
microsoftie
3.0.1
microsoftie
3.01
microsoftie
3.1
microsoftie
4.0
microsoftie
4.0
microsoftie
4.0
microsoftie
4.0
microsoftie
4.0:a
microsoftie
4.0.1
microsoftie
4.0.1
microsoftie
4.0.1
microsoftie
4.0.1
microsoftie
4.0a:a
microsoftie
4.1
microsoftie
4.1
microsoftie
4.1
microsoftie
4.5
microsoftie
4.5
microsoftie
4.x:x
microsoftie
5.0
microsoftie
5.0
microsoftie
5.0
microsoftie
5.0
microsoftie
5.0
microsoftie
5.0
microsoftie
5.0
microsoftie
5.0:sp1
microsoftie
5.0:sp4
microsoftie
5.0.1
microsoftie
5.0.1
microsoftie
5.0.1
microsoftie
5.0.1
microsoftie
5.0_ta3:_ta3
microsoftie
5.1
microsoftie
5.1
microsoftie
5.01
microsoftie
5.1.1
microsoftie
5.1.7
microsoftie
5.2
microsoftie
5.2.3
microsoftie
5.2.3
microsoftie
5.22
microsoftie
5.x:x
microsoftinternet_explorer
𝑥
≤ 6.0.2900.2180
microsoftinternet_explorer
3.0
microsoftinternet_explorer
3.0.1
microsoftinternet_explorer
3.0.2
microsoftinternet_explorer
3.1
microsoftinternet_explorer
3.2
microsoftinternet_explorer
4.0
microsoftinternet_explorer
4.0.1
microsoftinternet_explorer
4.0.1:sp1
microsoftinternet_explorer
4.0.1:sp2
microsoftinternet_explorer
4.01
microsoftinternet_explorer
4.1
microsoftinternet_explorer
4.01:sp1
microsoftinternet_explorer
4.5
microsoftinternet_explorer
4.40.308
microsoftinternet_explorer
4.40.520
microsoftinternet_explorer
4.70.1155
microsoftinternet_explorer
4.70.1158
microsoftinternet_explorer
4.70.1215
microsoftinternet_explorer
4.70.1300
microsoftinternet_explorer
4.71.1008.3
microsoftinternet_explorer
4.71.1712.6
microsoftinternet_explorer
4.72.2106.8
microsoftinternet_explorer
4.72.3110.8
microsoftinternet_explorer
4.72.3612.1713
microsoftinternet_explorer
5.0
microsoftinternet_explorer
5.0.1
microsoftinternet_explorer
5.0.1:sp1
microsoftinternet_explorer
5.0.1:sp2
microsoftinternet_explorer
5.0.1:sp4
microsoftinternet_explorer
5.00.0518.10
microsoftinternet_explorer
5.00.0910.1309
microsoftinternet_explorer
5.00.2014.0216
microsoftinternet_explorer
5.00.2516.1900
microsoftinternet_explorer
5.00.2614.3500
microsoftinternet_explorer
5.00.2919.800
microsoftinternet_explorer
5.00.2919.6307
microsoftinternet_explorer
5.00.2920.0000
microsoftinternet_explorer
5.00.3103.1000
microsoftinternet_explorer
5.00.3105.0106
microsoftinternet_explorer
5.00.3314.2101
microsoftinternet_explorer
5.00.3315.1000
microsoftinternet_explorer
5.00.3502.1000
microsoftinternet_explorer
5.00.3700.1000
microsoftinternet_explorer
5.01
microsoftinternet_explorer
5.1
microsoftinternet_explorer
5.01:sp1
microsoftinternet_explorer
5.01:sp3
microsoftinternet_explorer
5.2.3
microsoftinternet_explorer
5.5
microsoftinternet_explorer
5.5:preview
microsoftinternet_explorer
5.5:sp1
microsoftinternet_explorer
5.5:sp2
microsoftinternet_explorer
5.50.3825.1300
microsoftinternet_explorer
5.50.4030.2400
microsoftinternet_explorer
5.50.4134.0100
microsoftinternet_explorer
5.50.4134.0600
microsoftinternet_explorer
5.50.4308.2900
microsoftinternet_explorer
5.50.4522.1800
microsoftinternet_explorer
5.50.4807.2300
microsoftinternet_explorer
6.0
microsoftinternet_explorer
6.0.2600
microsoftinternet_explorer
6.0.2800
microsoftinternet_explorer
6.0.2800.1106
microsoftinternet_explorer
6.0.2900
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2009-07/0192.html
http://archives.neohapsis.com/archives/bugtraq/2009-07/0193.html
http://websecurity.com.ua/3338/
http://www.securityfocus.com/archive/1/505092/100/0/threaded
http://www.securityfocus.com/archive/1/505120/100/0/threaded
http://www.securityfocus.com/archive/1/505122/100/0/threaded
http://archives.neohapsis.com/archives/bugtraq/2009-07/0192.html
http://archives.neohapsis.com/archives/bugtraq/2009-07/0193.html
http://websecurity.com.ua/3338/
http://www.securityfocus.com/archive/1/505092/100/0/threaded
http://www.securityfocus.com/archive/1/505120/100/0/threaded
http://www.securityfocus.com/archive/1/505122/100/0/threaded