CVE-2002-1217
CVE-2002-1217
Cross-Frame scripting vulnerability in the WebBrowser control as used in Internet Explorer 5.5 and 6.0 allows remote attackers to execute arbitrary code, read arbitrary files, or conduct other unauthorized activities via script that accesses the Document property, which bypasses <frame> and <iframe> domain restrictions.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/21940não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0024.htmlhttp://marc.info/?l=bugtraq&m=103470310417576&w=2http://marc.info/?l=ntbugtraq&m=103470202010570&w=2https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-066http://security.greymagic.com/adv/gm011-ie/https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A272https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A333http://www.ciac.org/ciac/bulletins/n-018.shtmlhttp://www.iss.net/security_center/static/10371.phphttp://www.securityfocus.com/bid/5963