QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2004-0475

Back to search

CVE-2004-0475

Published: May 20, 2004

Modified: Aug 8, 2024

PUBLISHED

Description

The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM files via a double backward slash ("\\") before the target CHM file, as demonstrated using an "ms-its" URL to ntshared.chm. NOTE: this bug may overlap CVE-2003-1041.

VendorProductVersions

n/a

n/a

affected
n/a

References

10348
vdb-entry
x_refsource_BID
20040513 Showhelp() local CHM file execution
mailing-list
x_refsource_BUGTRAQ
ie-showhelp-chm-execution(16147)
vdb-entry
x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now