What is CVE-2003-1026?

CVE-2003-1026 is a vulnerability in N/a. Published 2004-01-08.

Is CVE-2003-1026 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2003-1026

Internet Explorer 5.01 through 6 SP1 allows remote attackers to bypass zone restrictions via a javascript protocol URL in a sub-frame, which is added to the history list and executed in the top window's zone when the history.back (back) fu…

EPSS: 0.558 (98.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

www.safecenter.net/UMBRELLAWEBV4/BackToFramedJpu (x_refsource_MISC)
oval:org.mitre.oval:def:630 (signature, x_refsource_OVAL, vdb-entry)
VU#784102 (x_refsource_CERT-VN, third-party-advisory)
oval:org.mitre.oval:def:689 (signature, x_refsource_OVAL, vdb-entry)
oval:org.mitre.oval:def:774 (signature, x_refsource_OVAL, vdb-entry)
20031201 Comments on 5 IE vulnerabilities (mailing-list, x_refsource_BUGTRAQ)
oval:org.mitre.oval:def:687 (signature, x_refsource_OVAL, vdb-entry)
TA04-033A (x_refsource_CERT, third-party-advisory)
oval:org.mitre.oval:def:805 (signature, x_refsource_OVAL, vdb-entry)
MS04-004 (x_refsource_MS, vendor-advisory)

Frequently asked questions

What is CVE-2003-1026?: CVE-2003-1026 is a vulnerability in N/a. Published 2004-01-08.
Is CVE-2003-1026 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.