VDB
GCVE-110-CERTCC-2004-356600
GCVE-110-CERTCC-2004-356600
Advisory Published
A cross-domain vulnerability exists in the DHTML Editing ActiveX control. An attacker may be able to execute arbitrary script in the Local Machine Zone or read or modify data in other domains. For example, the attacker could execute arbitrary commands with parameters, download and execute arbitrary code, read cookies, spoof content, or modify form behavior.
Risk Scores
certcc-cam
certcc-cam
impact13population20exploitation0widely_known20score_current35.1ease_of_exploitation15
References
Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
advisory
Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
advisory
Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
advisory
Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
advisory
Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
advisory
Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
advisory
Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
advisory
Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
advisory
Browse GCVE Records
73,443 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.