Vulnerability in N/a
CVE-2004-1050
Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the…
EPSS: 0.815 (99.2th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- VU#842160 (x_refsource_CERT-VN, third-party-advisory)
- 20041023 python does mangleme (with IE bugs!) (mailing-list, x_refsource_FULLDISC)
- MS04-040 (x_refsource_MS, vendor-advisory)
- 20041102 MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC (mailing-list, x_refsource_BUGTRAQ)
- 11515 (vdb-entry, x_refsource_BID)
- oval:org.mitre.oval:def:1294 (signature, x_refsource_OVAL, vdb-entry)
- 20041025 python does mangleme (with IE bugs!) (mailing-list, x_refsource_FULLDISC)
- TA04-315A (x_refsource_CERT, third-party-advisory)
- ie-iframe-src-name-bo(17889) (vdb-entry, x_refsource_XF)
- 12959 (x_refsource_SECUNIA, third-party-advisory)