Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document has been loaded, which could allow remote malicious users to execute Javascript in a different security context while the document is loading.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet explorer 4.0 |
||
microsoft internet explorer 5.0 |
||
microsoft internet explorer 5.5 |
||
microsoft internet explorer 4.0.1 |
||
microsoft internet explorer 5.01 |