CVE-2005-2829

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 5.01 through 6

Description The issue is related to design errors that allow user-assisted attackers to execute arbitrary code. This is achieved by overlaying a malicious new window above a file download box and then using a keyboard shortcut. The file download box is delayed until the user hits a shortcut that activates the "Run" button.

Recommendations For Microsoft Internet Explorer versions 5.01 through 6, update to a version that addresses the "File Download Dialog Box Manipulation" issue to prevent exploitation.