Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

VulnCheck KEV
VulnCheck KEVadded 2004/11/09 12:0 a.m.2 views

VulnCheck KEV: CVE-2004-0841

Internet Explorer 6.x allows remote attackers to install arbitrary programs via mousedown events that call the Popup.show method and use drag-and-drop actions in a popup window, aka "HijackClick 3" and the "Script in Image Tag File Download Vulnerability."...

5CVSS5.9AI score0.52369EPSS
Exploits1References1
CVE
CVEadded 2004/09/14 4:0 a.m.78 views

CVE-2004-0841

The CVE-2004-0841 entry corresponds to Internet Explorer 6.x vulnerability commonly called Script in Image Tag File Download (also HijackClick 3). The connected advisories describe this as an IE vulnerability that allows a remote attacker to escalate privileges by abusing script execution in imag...

5CVSS7.5AI score0.52369EPSS
Exploits1References17Affected Software6
securityvulns
securityvulnsadded 2004/07/13 12:0 a.m.32 views

HijackClick 3

Note: This vulnerability as well as several more can be found at http://www.greyhats.cjb.net HijackClick 3!!! Took the name from Liu Die Yu : Tested IEXPLORE.EXE file version 6.0.2800.1106 MSHTML.DLL file version 6.00.2800.1400 Microsoft Windows XP sp2 Discussion The HijackClick series have been...

7.2AI score
Exploits0
CERT
CERTadded 2004/02/02 12:0 a.m.53 views

Microsoft Internet Explorer allows mouse events to manipulate window objects and perform "drag and drop" operations

Overview Microsoft Internet Explorer IE dynamic HTML DHTML mouse events can manipulate windows to copy objects from one domain to another, including the Local Machine Zone. This vulnerability could allow an attacker to write arbitrary files to the local file system. Description In IE, certain DHT...

7.4AI score
Exploits0References30
CVE
CVEadded 2004/01/14 5:0 a.m.63 views

CVE-2003-0823

CVE-2003-0823 describes a drag-and-drop hijack in Internet Explorer 6 SP1 and earlier, where invoking window.moveBy could direct drag-and-drop actions to other windows, enabling remote control of user actions. The vulnerability is cited as a variant exploited by other browsers as well (e.g., CVE-...

7.5CVSS7.5AI score0.30478EPSS
Exploits0References13Affected Software2
securityvulns
securityvulnsadded 2003/11/26 12:0 a.m.26 views

HijackClickV2 - a successor of HijackClick attack

HijackClickV2 - a successor of HijackClick attack tested OS:Win2k3,CN version IE: with MS03-048 installed. OS:WinXp, CN version Microsoft Internet Explorer v6.Sp1; up-to-date on 2003/11/16 overview After applying MS03-048, the original HijackClick exploit doesn't work any more. With method...

0.2AI score
Exploits0
securityvulns
securityvulnsadded 2003/09/11 12:0 a.m.18 views

MSIE->HijackClick: 1+1=2

HijackClick: 1+1=2. tested Browser Ver MS Internet Explorer: 6.0.2600.0000.xpclntqfe.021108-2107; Encryption: 128-bit; Patch:; Q810847; So, it's far from fully patched. OS Ver: "Windows XP Cn ver" demo POF VER http://www.safecenter.net/liudieyu/HijackClick/HijackClick-MyPage.HTM or...

6.8AI score
Exploits0
Rows per page
Query Builder