Microsoft Internet Explorer 5/6 Self Executing HTML File Vulnerability

2003-02-25T00:00:00
ID EDB-ID:22288
Type exploitdb
Reporter http-equiv
Modified 2003-02-25T00:00:00

Description

Microsoft Internet Explorer 5/6 Self Executing HTML File Vulnerability. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/6961/info

Microsoft Internet Explorer contains a vulnerability that can allow script code within an HTML document to run an embedded executable file. Since the file is an HTML file, Internet Explorer will open and parse the file. When the script that points back to the embedded executable is parsed, the embedded executable will run on the client system in the security context of Internet Explorer.

There have been reports that some users may not be able to reproduce this vulnerability. When more information becomes available, this record will be updated.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/22288-1.zip

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/22288-2.zip