VDB
CVE-2004-0549
CVE-2004-0549
PUBLISHED
CVSS 10 CRITICAL
The WebBrowser ActiveX control, or the Internet Explorer HTML rendering engine (MSHTML), as used in Internet Explorer 6, allows remote attackers to execute arbitrary code in the Local Security context by using the showModalDialog method and modifying the location to execute code such as Javascript, as demonstrated using (1) delayed HTTP redirect operations, and an HTTP response with a Location: header containing a "URL:" prepended to a "ms-its" protocol URI, or (2) modifying the location attribute of the window, as exploited by the Download.ject (aka Scob aka Toofer) using the ADODB.Stream object.
EPSS 69.05% · 98.7th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
69.05%
98.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| microsoft | internet_explorer | 5.5, 6.0, 5.01 |
Timeline
- CVE Published
- Sep 23, 2010 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- http://62.131.86.111/analysis.htm url
- TA04-184A third-party-advisory
- oval:org.mitre.oval:def:207 vdb
- ie-location-restriction-bypass(16348) vdb
- TA04-163A third-party-advisory
- oval:org.mitre.oval:def:1133 vdb
- VU#713878 third-party-advisory
- 20040621 IE/0DAY -> Insider Prototype mailing-list
- 20040602 180 Solutions Exploits and Toolbars Hacking Patched Users(I.E Exploits) mailing-list
- http://umbrella.name/originalvuln/msie/InsiderPrototype/ url
- MS04-025 vendor-advisory
- TA04-212A third-party-advisory
- 20040628 JS.Scob.Trojan Source Code ... mailing-list
- 20040606 Internet explorer 6 execution of arbitrary code (An analysis of the 180 Solutions Trojan) mailing-list
- oval:org.mitre.oval:def:519 vdb
- oval:org.mitre.oval:def:241 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2004-0549 advisory
- http://umbrella.name/originalvuln/msie/InsiderPrototype url