Vulnerability Details CVE-2004-0719
Internet Explorer for Mac 5.2.3, Internet Explorer 6 on Windows XP, and possibly other versions, does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.156
EPSS Ranking 94.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/11966
- http://secunia.com/advisories/11978
- http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1598
- http://secunia.com/advisories/11966
- http://secunia.com/advisories/11978
- http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1598
Products affected by CVE-2004-0719
-
cpe:2.3:a:microsoft:ie:6.0
-
cpe:2.3:a:microsoft:internet_explorer:5.0.1
-
cpe:2.3:a:microsoft:internet_explorer:5.5
-
cpe:2.3:a:microsoft:internet_explorer:6.0