10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.927 High
EPSS
Percentile
99.0%
Added: 05/03/2006
CVE: CVE-2004-1050
BID: 11515
OSVDB: 11337
Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems.
A buffer overflow when processing the **name**
attribute in an **IFRAME**
tag allows command execution when a malformed web page is loaded.
Apply the update referenced in Microsoft Security Bulletin 04-040 or a later cumulative Internet Explorer update.
<http://www.kb.cert.org/vuls/id/842160>
Exploit works on Internet Explorer 6. Exploitation requires a user to load the exploit into Internet Explorer.
Windows