CVE-2005-0054

Name of the Vulnerable Software and Affected Versions Internet Explorer versions 5.01, 5.5, and 6

Description The issue allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs with double hex encoded hostnames. These hostnames are decoded twice, resulting in the generation of a malicious hostname.

Recommendations For Internet Explorer versions 5.01, 5.5, and 6, update to a version that includes a fix for this issue to prevent the execution of arbitrary code.