CVE-2006-6310
Microsoft Internet Explorer 6.0 SP1 and earlier allows remote attackers to cause a denial of service (crash) via an invalid src attribute value ("?") in an HTML frame tag that is in a frameset tag with a large rows attribute. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Date published : 2006-12-06
http://www.securityfocus.com/bid/21447
http://downloads.securityfocus.com/vulnerabilities/exploits/21447.html