← back
CVE-2002-0723

CVE-2002-0723

EPSS 15.0%
Microsoft Internet Explorer 5.5 and 6.0 does not properly verify the domain of a frame within a browser window, which allows remote attackers to read client files or invoke executable objects via the Object tag, aka "Cross Domain Verification in Object Tag."
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/21606unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-047http://www.iss.net/security_center/static/9537.phphttp://www.securityfocus.com/bid/5196