QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2005-2829

Back to search

CVE-2005-2829

Published: Dec 14, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple design errors in Microsoft Internet Explorer 5.01, 5.5, and 6 allow user-assisted attackers to execute arbitrary code by (1) overlaying a malicious new window above a file download box, then (2) using a keyboard shortcut and delaying the display of the file download box until the user hits a shortcut that activates the "Run" button, aka "File Download Dialog Box Manipulation Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

18064
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:1340
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:1458
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:1209
vdb-entry
signature
x_refsource_OVAL
15823
vdb-entry
x_refsource_BID
MS05-054
vendor-advisory
x_refsource_MS
15368
third-party-advisory
x_refsource_SECUNIA
ADV-2005-2909
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:1507
vdb-entry
signature
x_refsource_OVAL
1015349
vdb-entry
x_refsource_SECTRACK
18311
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:1490
vdb-entry
signature
x_refsource_OVAL
ADV-2005-2867
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:1505
vdb-entry
signature
x_refsource_OVAL
254
third-party-advisory
x_refsource_SREASON

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now