New Search

IFRAME Vulnerability

oval:org.mitre.oval:def:1294

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME FRAME and EMBED elements as originally discovered using the mangleme utility aka "the IFRAME vulnerability" or the "HTML Elements Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 98
  • Microsoft Windows 2000
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2004-1050
Product(s):
  • Microsoft Internet Explorer