CVE Vulnerabilities

CVE-2004-1050

Published: Dec 31, 2004 | Modified: Jul 23, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka the IFRAME vulnerability or the HTML Elements Vulnerability.

Affected Software

Name Vendor Start Version End Version
Ip600_media_servers Avaya * *
Ip600_media_servers Avaya r10 r10
Internet_explorer Microsoft 6.0 6.0
Ie Microsoft 6.0 6.0
Definity_one_media_server Avaya r8 r8
Definity_one_media_server Avaya r9 r9
S3400 Avaya * *
S8100 Avaya r8 r8
S8100 Avaya r9 r9
Ip600_media_servers Avaya r8 r8
Ip600_media_servers Avaya r9 r9
Definity_one_media_server Avaya r12 r12
Definity_one_media_server Avaya r7 r7
Definity_one_media_server Avaya * *
S8100 Avaya r11 r11
S8100 Avaya * *
Ip600_media_servers Avaya r6 r6
S8100 Avaya r7 r7
Ip600_media_servers Avaya r12 r12
S8100 Avaya r6 r6
S8100 Avaya r10 r10
Ip600_media_servers Avaya r7 r7
Ip600_media_servers Avaya r11 r11
Definity_one_media_server Avaya r6 r6
S8100 Avaya r12 r12
Definity_one_media_server Avaya r10 r10
Definity_one_media_server Avaya r11 r11

References