Back to search
CVE-2004-1686
Published: Feb 20, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
Internet Explorer 6.0 in Windows XP SP2 allows remote attackers to bypass the Information Bar prompt for ActiveX and Javascript via an XHTML page that contains an Internet Explorer formatted comment between the DOCTYPE tag and the HTML tag, as demonstrated using the DesignScience MathPlayer ActiveX plugin.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20040915 IE6 + XP SP2 Vulnerability
mailing-list
x_refsource_BUGTRAQ
ie-information-bar-bypass(20617)
vdb-entry
x_refsource_XF
11200
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now