CVE-2010-1127

Microsoft Internet Explorer 6 and 7 does not initialize certain data structures during execution of the createElement method, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted JavaScript code, as demonstrated by setting the (1) outerHTML or (2) value property of an object returned by createElement.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
VendorProductVersion
microsoftinternet_explorer
6.0
microsoftinternet_explorer
6.00.2462.0000
microsoftinternet_explorer
6.00.2479.0006
microsoftinternet_explorer
6.0.2600
microsoftinternet_explorer
6.00.2600.0000
microsoftinternet_explorer
6.0.2800
microsoftinternet_explorer
6.0.2800.1106
microsoftinternet_explorer
6.00.2800.1106
microsoftinternet_explorer
6.0.2900
microsoftinternet_explorer
6.0.2900.2180
microsoftinternet_explorer
6.00.2900.2180
microsoftinternet_explorer
6.00.3663.0000
microsoftinternet_explorer
6.00.3718.0000
microsoftinternet_explorer
6.00.3790.0000
microsoftinternet_explorer
6.00.3790.1830
microsoftinternet_explorer
6.00.3790.3959
microsoftinternet_explorer
7.0
microsoftinternet_explorer
7.0:beta
microsoftinternet_explorer
7.0:beta1
microsoftinternet_explorer
7.0:beta2
microsoftinternet_explorer
7.0:beta3
microsoftinternet_explorer
7.0.5730:unknown
microsoftinternet_explorer
7.0.5730.11
microsoftinternet_explorer
7.00.5730.1100
microsoftinternet_explorer
7.00.6000.16386
microsoftinternet_explorer
7.00.6000.16441
𝑥
= Vulnerable software versions
References
http://archives.neohapsis.com/archives/bugtraq/2010-01/0237.html
http://archives.neohapsis.com/archives/bugtraq/2010-01/0278.html
http://securityreason.com/exploitalert/7731
http://archives.neohapsis.com/archives/bugtraq/2010-01/0237.html
http://archives.neohapsis.com/archives/bugtraq/2010-01/0278.html
http://securityreason.com/exploitalert/7731