PT-2004-1164 · Microsoft · Internet Explorer
Liu Die Yu
·
Publicado
2004-01-14
·
Atualizado
2021-07-23
·
CVE-2003-0815
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Internet Explorer versions 6 SP1 and earlier
Description
The issue allows remote attackers to bypass zone restrictions and read arbitrary files. This can be achieved by modifying the
createTextRange method and using CreateLink, or by modifying the createRange method and using the FIND dialog to select text.Recommendations
For Internet Explorer versions 6 SP1 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Internet Explorer