5.1

CVE-2005-2829

Multiple design errors in Microsoft Internet Explorer 5.01, 5.5, and 6 allow user-assisted attackers to execute arbitrary code by (1) overlaying a malicious new window above a file download box, then (2) using a keyboard shortcut and delaying the display of the file download box until the user hits a shortcut that activates the "Run" button, aka "File Download Dialog Box Manipulation Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftIe Version6.0 Updatesp1
MicrosoftInternet Explorer Version5.0.1 Updatesp4
MicrosoftInternet Explorer Version5.5 Updatesp2
MicrosoftInternet Explorer Version6.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 18.59% 0.969
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.1 4.9 6.4
AV:N/AC:H/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/15368
Vendor Advisory
http://secunia.com/advisories/18064
Vendor Advisory
http://secunia.com/advisories/18311
Vendor Advisory
http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf
http://www.vupen.com/english/advisories/2005/2867
Vendor Advisory
http://www.vupen.com/english/advisories/2005/2909
Vendor Advisory
http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-054
http://marc.info/?l=full-disclosure&m=113450519906463&w=2
http://secunia.com/secunia_research/2005-21/advisory
Patch
Vendor Advisory
http://secunia.com/secunia_research/2005-7/advisory/
Patch
Vendor Advisory
http://securityreason.com/securityalert/254
http://securitytracker.com/id?1015349
http://www.securityfocus.com/archive/1/419395/100/0/threaded
http://www.securityfocus.com/bid/15823
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/23448
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1209
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1340
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1458
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1490
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1505
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1507