VDB
CVE-2004-0727
CVE-2004-0727
PUBLISHED
CVSS 7.5 HIGH
Microsoft Internet Explorer 6.0.2800.1106 on Microsoft Windows XP SP2, and other versions including 5.01 and 5.5, allows remote web servers to bypass zone restrictions and execute arbitrary code in the local computer zone by redirecting a function to another function with the same name, as demonstrated by SimilarMethodNameRedir, aka the "Similar Method Name Redirection Cross Domain Vulnerability."
EPSS 57.58% · 98.2th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
57.58%
98.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| microsoft | internet_explorer | 6.0.2800.1106 |
Timeline
- Jul 23, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- http://freehost07.websamba.com/greyhats/similarmethodnameredir.htm url
- oval:org.mitre.oval:def:7448 vdb
- oval:org.mitre.oval:def:7496 vdb
- VU#207264 third-party-advisory
- MS04-038 vendor-advisory
- oval:org.mitre.oval:def:4702 vdb
- oval:org.mitre.oval:def:7906 vdb
- 12048 third-party-advisory
- TA04-293A third-party-advisory
- ie-function-redirect-xss(16681) vdb
- oval:org.mitre.oval:def:6829 vdb
- 20040711 MSIE Similar Method Name Redirection Cross Site/Zone Scripting mailing-list
- oval:org.mitre.oval:def:7084 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2004-0727 advisory