Home    |    View Topics    |    Search    |    Contact Us    |   



Category:   Application (Web Browser)  >   Microsoft Internet Explorer Vendors:   Microsoft
Microsoft Internet Explorer Can By Crashed By Loading 'C:\aux' URL
SecurityTracker Alert ID:  1007126
SecurityTracker URL:
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jul 7 2003
Impact:   Denial of service via network
Exploit Included:  Yes  
Version(s): 6.0
Description:   A denial of service vulnerability was reported in Microsoft Internet Explorer. A remote user can create HTML that, when loaded, will cause the target user's browser to crash.

It is reported that when the browser attempts to load the URL 'C:\aux', the browser will stop responding.

The vendor has reportedly been notified.

Impact:   A remote user can create HTML that will cause the browser to crash.
Solution:   No solution was available at the time of this entry.
Vendor URL: (Links to External Site)
Cause:   Exception handling error

Message History:   None.

 Source Message Contents

Subject:  [Full-Disclosure] Internet Explorer 6 DoS Bug

If you enter C:\aux in the adressline of the IE (not EXPLORER, InternetExplorer)
and hit enter, the window will freeze. This bug is simmilar to C:\con\con
but not as dagerous. But its the same reason, naimly that windows trys to
open aux, a hardware device in earlier windows versions.
I already sended an email to Microsoft but they said the bug wouldn't exist.


Fabian Becker (


Full-Disclosure - We believe in it.


Go to the Top of This SecurityTracker Archive Page

Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, LLC