CVE-2006-4888

CVE Database · CVE-2006-4888

CVE-2006-4888

· N/AModified

CVSS v3.1

N/A

EPSS

16.59%

Published

Sep 19, 2006

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Internet Explorer 6 and earlier allows remote attackers to cause a denial of service (application hang) via a CSS-formatted HTML INPUT element within a DIV element that has a larger size than the INPUT.

Affected Products (1)

microsoft · ievulnerable

References (6)

http://archives.neohapsis.com/archives/bugtraq/2006-07/0199.html

http://jonas.elunic.de/blog/index.php/2006/07/14/ie-freeze-bug/

http://www.osvdb.org/28614

http://archives.neohapsis.com/archives/bugtraq/2006-07/0199.html

http://jonas.elunic.de/blog/index.php/2006/07/14/ie-freeze-bug/

http://www.osvdb.org/28614

KEV Catalog EPSS Scores Vendors All CVEs