CVE-2004-0727 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2004-0727
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0727

Description: Microsoft Internet Explorer 6.0.2800.1106 on Microsoft Windows XP SP2, and other versions including 5.01 and 5.5, allows remote web servers to bypass zone restrictions and execute arbitrary code in the local computer zone by redirecting a function to another function with the same name, as demonstrated by SimilarMethodNameRedir, aka the "Similar Method Name Redirection Cross Domain Vulnerability."

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/16681 SAID Secunia Advisory: SA12048 OVAL http://oval.mitre.org/oval/definitions/data/oval7496.html http://oval.mitre.org/oval/definitions/data/oval7906.html http://oval.mitre.org/oval/definitions/data/oval7448.html http://oval.mitre.org/oval/definitions/data/oval4702.html http://oval.mitre.org/oval/definitions/data/oval6829.html http://oval.mitre.org/oval/definitions/data/oval7084.html MS http://www.microsoft.com/technet/security/bulletin/ms04-038.asp MISC http://freehost07.websamba.com/greyhats/similarmethodnameredir.htm CERT-VN 207264 CERT http://www.us-cert.gov/cas/techalerts/TA04-293A.html BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=108966512815373&w=2

Return to the previous page.