Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2004-0549

Published: 06/08/2004 Updated: 23/07/2021
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Microsoft

Vulnerability Summary

The WebBrowser ActiveX control, or the Internet Explorer HTML rendering engine (MSHTML), as used in Internet Explorer 6, allows remote malicious users to execute arbitrary code in the Local Security context by using the showModalDialog method and modifying the location to execute code such as Javascript, as demonstrated using (1) delayed HTTP redirect operations, and an HTTP response with a Location: header containing a "URL:" prepended to a "ms-its" protocol URI, or (2) modifying the location attribute of the window, as exploited by the Download.ject (aka Scob aka Toofer) using the ADODB.Stream object.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft internet explorer

microsoft internet explorer 6.0

microsoft internet explorer 5.01

microsoft internet explorer 5.5

Exploits

Exploit DB: Microsoft Internet Explorer - Remote Wscript.Shell
----------------------------------------------------- defaulthtm ------------------------------------------------------- <html> <body> <img src="ccexe" width=0 height=0 style=display:none> <script language="Javascript"> function InjectedDuringRedirection(){ showModalDialog('mdhtm',window,"dialogTop:-1000\;dialogLeft:- ...

Recent Articles

Exploit kits attack vector – mid-year update
Securelist • Vicente Diaz • 01 Aug 2011

It is very interesting to see how short the lifespan of an exploit kit is. Some kits that were once popular and infected thousands of users are no longer being used. Even more interesting is the fact that some old kits make a comeback rearmed with fresh new exploits and reach the top of the rankings in serving malware. However, the most interesting area of study is how current exploits are used and their targets. In order to get some perspective, let?s start by analyzing the situation in 2010. T...

Read more...

References

NVD-CWE-Otherhttp://www.us-cert.gov/cas/techalerts/TA04-163A.htmlhttp://archives.neohapsis.com/archives/fulldisclosure/2004-06/0031.htmlhttp://archives.neohapsis.com/archives/fulldisclosure/2004-06/0104.htmlhttp://62.131.86.111/analysis.htmhttp://umbrella.name/originalvuln/msie/InsiderPrototype/http://www.us-cert.gov/cas/techalerts/TA04-212A.htmlhttp://www.kb.cert.org/vuls/id/713878http://www.us-cert.gov/cas/techalerts/TA04-184A.htmlhttp://marc.info/?l=bugtraq&m=108786396622284&w=2http://marc.info/?l=bugtraq&m=108852642021426&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/16348https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A519https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A241https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A207https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1133https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-025https://nvd.nist.govhttps://www.exploit-db.com/exploits/316/https://www.kb.cert.org/vuls/id/713878
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook