Microsoft Internet Explorer showHelp crossite scripting
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Microsoft Internet Explorer showHelp crossite scripting
updated since 07.02.2003
Published:
04.09.2003
Source:
MICROSOFT
SecurityVulns ID:
2574
Type:
client
Level:
6
/10
Description:
Subsequent calls to showHelp cause content to be displayed in the same security zone.
Affected:
MICROSOFT
:
Internet Explorer 5.0
MICROSOFT
:
Internet Explorer 5.5
MICROSOFT
:
Internet Explorer 6.0
Original document
Arman Nayyeri
,
IE: CHM Attacks are still alive (CHM attack without showHelp())
(
04.09.2003
)
MICROSOFT
,
Microsoft Security Bulletin MS03-004: Cumulative Patch for Internet Explorer (810847)
(
07.02.2003
)
Andreas Sandblad
,
showHelp("file:") disables security in IE - Sandblad advisory #11
(
07.02.2003
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
