Internet Explorer on Windows XP does not properly modify the Drag and Drop or copy and paste files setting when the user sets it to Disable or Prompt, which may enable security-sensitive operations that are inconsistent with the users intended configuration.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ie | Microsoft | 6.0-sp1 (including) | 6.0-sp1 (including) |
| Ie | Microsoft | 6.0-sp2 (including) | 6.0-sp2 (including) |
| Internet_explorer | Microsoft | 6.0 (including) | 6.0 (including) |
References
- http://www.kb.cert.org/vuls/id/630720
- http://www.us-cert.gov/cas/techalerts/TA04-293A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17820
- http://www.kb.cert.org/vuls/id/630720
- http://www.us-cert.gov/cas/techalerts/TA04-293A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17820