IE Frame Domain Verification VulnerabilityID: oval:org.mitre.oval:def:974 | Date: (C)2004-04-29 (M)2021-07-27 |
Class: VULNERABILITY | Family: windows |
Internet Explorer 5.5 and 6.0 allows remote attackers to read certain files and spoof the URL in the address bar by using the Document.open function to pass information between two frames from different domains, a new variant of the "Frame Domain Verification" vulnerability described in MS:MS01-058/CAN-2001-0874.
Platform: |
Microsoft Windows 98 |
Microsoft Windows ME |
Microsoft Windows NT |
Microsoft Windows 2000 |
Microsoft Windows XP |
Product: |
Microsoft Internet Explorer |