Microsoft Internet Explorer 7 allows remote attackers to cause a denial of service (application crash) via Javascript that calls the alert function with a URL-encoded string of a large number of invalid characters.
Software | From | Fixed in |
---|---|---|
microsoft / internet_explorer | 5 | 5.x |
microsoft / internet_explorer | 6 | 6.x |
microsoft / internet_explorer | 7 | 7.x |