Microsoft Internet Explorer 6.0 and earlier allows malicious website operators to cause a denial of service (client crash) via JavaScript that continually refreshes the window via self.location.Referenceshttp://www.securityfocus.com/bid/3730http://www.securityfocus.com/archive/1/246649
