Vulnerability in N/a
CVE-2003-0838
Internet Explorer allows remote attackers to bypass zone restrictions to inject and execute arbitrary programs by creating a popup window and inserting ActiveX object code with a "data" tag pointing to the malicious code, which Internet Ex…
EPSS: 0.671 (98.6th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- ie-popup-code-execution(13314) (vdb-entry, x_refsource_XF)
- 20030907 BAD NEWS: Microsoft Security Bulletin MS03-032 (mailing-list, x_refsource_BUGTRAQ)
- 7872 (x_refsource_OSVDB, vdb-entry)
- 20030907 BAD NEWS: Microsoft Security Bulletin MS03-032 (mailing-list, x_refsource_NTBUGTRAQ)
- 20030907 BAD NEWS: Microsoft Security Bulletin MS03-032 (mailing-list, x_refsource_FULLDISC)
- 20030908 Temporary Fix for IE Zero Day Malware RE: BAD NEWS: Microsoft Security Bulletin MS03-032 (mailing-list, x_refsource_BUGTRAQ)
- 8556 (vdb-entry, x_refsource_BID)
- MS03-040 (x_refsource_MS, vendor-advisory)
- 20031001 DNS/Hosts file issues (mailing-list, x_refsource_NTBUGTRAQ)
- oval:org.mitre.oval:def:204 (signature, x_refsource_OVAL, vdb-entry)