Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) via any scrollbar Cascading Style Sheets (CSS) property.
https://exchange.xforce.ibmcloud.com/vulnerabilities/25852
http://www.securityfocus.com/archive/1/430431/100/0/threaded
http://www.securityfocus.com/archive/1/430408/100/0/threaded