CVE-2002-0101

Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://marc.info/?l=bugtraq&m=101039104608083&w=2
http://www.iss.net/security_center/static/7826.php	Vendor Advisory
http://www.securityfocus.com/bid/3789

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:internet_explorer:5.5:::::::*
	cpe:2.3:a:microsoft:internet_explorer:5.5:sp1::::::
	cpe:2.3:a:microsoft:internet_explorer:5.5:sp2::::::
	cpe:2.3:a:microsoft:internet_explorer:6.0:::::::*

History

23 Jul 2021, 12:55

Type	Values Removed	Values Added
CPE	cpe:2.3:a:microsoft:ie:5.5:sp1:::::: cpe:2.3:a:microsoft:ie:5.5:::::::* cpe:2.3:a:microsoft:ie:6.0:::::::* cpe:2.3:a:microsoft:ie:5.5:sp2::::::	cpe:2.3:a:microsoft:internet_explorer:5.5:sp2:::::: cpe:2.3:a:microsoft:internet_explorer:5.5:::::::* cpe:2.3:a:microsoft:internet_explorer:6.0:::::::* cpe:2.3:a:microsoft:internet_explorer:5.5:sp1::::::

Information

Published : 2002-03-25 05:00

Updated : 2024-02-04 16:31

NVD link : CVE-2002-0101

Mitre link : CVE-2002-0101

CVE.ORG link : CVE-2002-0101

JSON object : View

Products Affected

microsoft

internet_explorer

CWE

NVD-CWE-Other

{"id": "CVE-2002-0101", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2002-03-25T05:00:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=101039104608083&w=2", "source": "cve@mitre.org"}, {"url": "http://www.iss.net/security_center/static/7826.php", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/3789", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released."}, {"lang": "es", "value": "Microsoft Internet Explorer 6.0 y anteriores permiten a usuarios locales causar una negaci\u00f3n de servicio v\u00eda bucle infinito para cuadros de di\u00e1logo sin modo (showModelessDialog), que causaran que el uso de CPU no se libere mientras el foco para el di\u00e1logo no es liberado."}], "lastModified": "2021-07-23T12:55:03.667", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40F8042F-C621-45AE-9F8C-70469579643A"}, {"criteria": "cpe:2.3:a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CD04E07-3664-4D4F-BF3E-6B33AF0F2D12"}, {"criteria": "cpe:2.3:a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D05ED9D0-CF78-4FAD-9371-6FB3D5825148"}, {"criteria": "cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A19F6133-25D1-44A5-B6B9-354703436783"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}