CVE-2006-1719
Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) via any scrollbar Cascading Style Sheets (CSS) property.
Date published : 2006-04-11
http://www.securityfocus.com/archive/1/430408/100/0/threaded
http://www.securityfocus.com/archive/1/430431/100/0/threaded