CVE-2004-1155

by Fred · 10/12/2004

Internet Explorer 5.01 through 6 allows remote attackers to spoof arbitrary web sites by injecting content from one window into another window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability. NOTE: later research shows that Internet Explorer 7 on Windows XP SP2 is also vulnerable.

Date published : 2004-12-10

http://www.securityfocus.com/bid/11855

http://www.securityfocus.com/archive/1/449917/100/0/threaded

CVE-2004-1155

Similar

Recent Posts

Categories

CVE-2004-1155

Share this:

Similar

Recent Posts

Categories

Tags