CVE-2003-0447

Published: Jun 20, 2003

Modified: Aug 8, 2024

PUBLISHED

Description

The Custom HTTP Errors capability in Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute script in the Local Zone via an argument to shdocvw.dll that causes a "javascript:" link to be generated.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20030617 Script Injection to Custom HTTP Errors in Local Zone (GM#014-IE)

mailing-list

x_refsource_FULLDISC

20030617 Script Injection to Custom HTTP Errors in Local Zone (GM#014-IE)

mailing-list

x_refsource_BUGTRAQ

http://security.greymagic.com/adv/gm014-ie/

x_refsource_MISC

20030617 Script Injection to Custom HTTP Errors in Local Zone (GM#014-IE)

mailing-list

x_refsource_NTBUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2003-0447

Description

Affected Products

References