CVE-2003-1326 | Vulnerability Database | Aqua Security

Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model to run malicious script or arbitrary programs via dialog boxes, aka Improper Cross Domain Security Validation with dialog box.

Affected Software

Name	Vendor	Start Version	End Version
Ie	Microsoft	6.0-sp1 (including)	6.0-sp1 (including)
Internet_explorer	Microsoft	5.0.1 (including)	5.0.1 (including)
Internet_explorer	Microsoft	5.0.1-sp1 (including)	5.0.1-sp1 (including)
Internet_explorer	Microsoft	5.0.1-sp2 (including)	5.0.1-sp2 (including)
Internet_explorer	Microsoft	5.0.1-sp3 (including)	5.0.1-sp3 (including)
Internet_explorer	Microsoft	5.5 (including)	5.5 (including)
Internet_explorer	Microsoft	5.5-sp1 (including)	5.5-sp1 (including)
Internet_explorer	Microsoft	5.5-sp2 (including)	5.5-sp2 (including)
Internet_explorer	Microsoft	6.0 (including)	6.0 (including)

References

http://www.ciac.org/ciac/bulletins/n-038.shtml
http://www.iss.net/security_center/static/11258.php
http://www.securityfocus.com/bid/6779
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-004
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A126
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A178
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A49

NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-1326
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html