Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service (crash) by creating a web page or HTML e-mail with a textarea in a div element whose scrollbar-base-color is modified by a CSS style, which is then moved.Referenceshttp://securityreason.com/securityalert/3295http://www.securityfocus.com/bid/8874http://www.securityfocus.com/archive/1/342010https://exchange.xforce.ibmcloud.com/vulnerabilities/13809
