Vulnerability in Avaya Definity_one_media_server
CVE-2004-0839
Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbitrary programs via a web page that uses certain styles and the AnchorClick behavior, popup windows, and drag-and-drop ca…
EPSS: 0.340 (98.2th percentile) — read the EPSS interpretation.
Affected products
- Avaya Definity_one_media_server
- Avaya Ip600_media_servers
- Avaya Modular_messaging_message_storage_server — versions 1.1, 2.0
- Avaya S3400
- Avaya S8100
- Microsoft Ie — versions 6.0
- Microsoft Internet_explorer — versions 5.0.1, 5.5, 6.0
- Microsoft Windows_2000
- Microsoft Windows_2003_server — versions enterprise, enterprise_64-bit, r2
- Microsoft Windows_98
References
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (Exploit, Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (x_refsource_MS, vendor-advisory)
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (Vendor Advisory, mailing-list, x_refsource_FULLDISC)
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (US Government Resource, Patch, Third Party Advisory, x_refsource_CERT, third-party-advisory)
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)