10

CVE-2004-1050

EPSS 75.6%
Veröffentlicht 31.12.2004 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the IFRAME vulnerability" or the "HTML Elements Vulnerability."

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 15

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Avaya ≫ Ip600 Media Servers

Avaya ≫ Ip600 Media Servers Versionr6

Avaya ≫ Ip600 Media Servers Versionr7

Avaya ≫ Ip600 Media Servers Versionr8

Avaya ≫ Ip600 Media Servers Versionr9

Avaya ≫ Ip600 Media Servers Versionr10

Avaya ≫ Ip600 Media Servers Versionr11

Avaya ≫ Ip600 Media Servers Versionr12

Microsoft ≫ Ie Version6.0 Updatesp1

Microsoft ≫ Internet Explorer Version6.0

Avaya ≫ Definity One Media Server

Avaya ≫ Definity One Media Server Versionr6

Avaya ≫ Definity One Media Server Versionr7

Avaya ≫ Definity One Media Server Versionr8

Avaya ≫ Definity One Media Server Versionr9

Avaya ≫ Definity One Media Server Versionr10

Avaya ≫ Definity One Media Server Versionr11

Avaya ≫ Definity One Media Server Versionr12

Avaya ≫ S3400

Avaya ≫ S8100

Avaya ≫ S8100 Versionr6

Avaya ≫ S8100 Versionr7

Avaya ≫ S8100 Versionr8

Avaya ≫ S8100 Versionr9

Avaya ≫ S8100 Versionr10

Avaya ≫ S8100 Versionr11

Avaya ≫ S8100 Versionr12

Avaya ≫ Modular Messaging Message Storage Server Versions3400

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	75.6%	0.988

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/028009.html

http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/028035.html

http://marc.info/?l=bugtraq&m=109942758911846&w=2

http://secunia.com/advisories/12959/

http://www.kb.cert.org/vuls/id/842160

Third Party Advisory

US Government Resource

http://www.securityfocus.com/archive/1/379261

http://www.securityfocus.com/bid/11515

http://www.us-cert.gov/cas/techalerts/TA04-315A.html

US Government Resource

http://www.us-cert.gov/cas/techalerts/TA04-336A.html

US Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-040

https://exchange.xforce.ibmcloud.com/vulnerabilities/17889

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1294

https://nvd.nist.gov/vuln/detail/CVE-2004-1050

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-1050

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-1050

EUVD