Vulnerabilities > CVE-2002-0723 - Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Microsoft Internet Explorer 5.5 and 6.0 does not properly verify the domain of a frame within a browser window, which allows remote attackers to read client files or invoke executable objects via the Object tag, aka "Cross Domain Verification in Object Tag."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Exploit-Db
description | MS IE 5/6 OBJECT Tag Same Origin Policy Violation Vulnerability. CVE-2002-0723 . Remote exploit for windows platform |
id | EDB-ID:21606 |
last seen | 2016-02-02 |
modified | 2002-07-10 |
published | 2002-07-10 |
reporter | Thor Larholm |
source | https://www.exploit-db.com/download/21606/ |
title | Microsoft Internet Explorer 5/6 OBJECT Tag Same Origin Policy Violation Vulnerability |