Microsoft Internet Explorer before Windows XP Service Pack 2 and Windows Server 2003 Service Pack 1, when Prompt is configured in Security Settings, uses modal dialogs to verify that a user wishes to run an ActiveX control or perform other risky actions, which allows user-assisted remote malicious users to construct a race condition that tricks a user into clicking an object or pressing keys that are actually applied to a "Yes" approval for executing the control.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft ie 5.0.1 |
||
microsoft ie 5.0 |
||
microsoft internet explorer 5.5 |
||
microsoft ie 6.0 |
||
microsoft internet explorer 7.0 |
||
microsoft internet explorer 5.0.1 |
||
microsoft internet explorer 6.0 |
||
microsoft internet explorer 5.0 |
||
microsoft ie 5 |