Back to search
CVE-2004-0841
Published: Sep 14, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
Internet Explorer 6.x allows remote attackers to install arbitrary programs via mousedown events that call the Popup.show method and use drag-and-drop actions in a popup window, aka "HijackClick 3" and the "Script in Image Tag File Download Vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
VU#413886
third-party-advisory
x_refsource_CERT-VN
1010679
vdb-entry
x_refsource_SECTRACK
oval:org.mitre.oval:def:2611
vdb-entry
signature
x_refsource_OVAL
MS04-038
vendor-advisory
x_refsource_MS
oval:org.mitre.oval:def:8077
vdb-entry
signature
x_refsource_OVAL
12048
third-party-advisory
x_refsource_SECUNIA
ie-popupshow-perform-actions(16675)
vdb-entry
x_refsource_XF
TA04-293A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:4363
vdb-entry
signature
x_refsource_OVAL
10690
vdb-entry
x_refsource_BID
7774
vdb-entry
x_refsource_OSVDB
oval:org.mitre.oval:def:5620
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:6031
vdb-entry
signature
x_refsource_OVAL
20040711 HijackClick 3
mailing-list
x_refsource_BUGTRAQ
oval:org.mitre.oval:def:6048
vdb-entry
signature
x_refsource_OVAL
20040712 Re: HijackClick 3
mailing-list
x_refsource_BUGTRAQ
20040712 Brand New Hole: Internet Explorer: HijackClick 3
mailing-list
x_refsource_FULLDISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now