Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
	Software Inspectors   Scan Online   Personal (PSI)   Network (NSI 2.0) Solutions For   Security Professionals   Security Vendors Free Solutions For   Open Communities   Journalists & Media Secunia Advisories   Search   Historic Advisories   Listed By Product   Listed By Vendor   Statistics / Graphs   Secunia Research   Report Vulnerability   About Advisories Virus Information   Chronological List   Last 10 Virus Alerts   About Virus Information Secunia Customers   Customer Area CVE Reference: CVE-2005-2829 NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. Original Page at CVE MITRE: CVE-2005-2829 Description: Multiple design errors in Microsoft Internet Explorer 5.01, 5.5, and 6 allow user-assisted attackers to execute arbitrary code by (1) overlaying a malicious new window above a file download box, then (2) using a keyboard shortcut and delaying the display of the file download box until the user hits a shortcut that activates the "Run" button, aka "File Download Dialog Box Manipulation Vulnerability." CVE Status: Candidate References: XF   http://xforce.iss.net/xforce/xfdb/23448 ST   1015349 SREASON   http://securityreason.com/securityalert/254 SAID   Secunia Advisory: SA15368   Secunia Advisory: SA18064   Secunia Advisory: SA18311 OVAL   http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1458   http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1340   http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1209   http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1490   http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1505   http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1507 MS   http://www.microsoft.com/technet/security/bulletin/ms05-054.mspx MISC   http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420   http://secunia.com/secunia_research/2005-7/advisory/   http://secunia.com/secunia_research/2005-21/advisory FULLDISC   http://marc.theaimsgroup.com/?l=full-disclosure&m=113450519906463&w=2 CONFIRM   http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf BUGTRAQ   http://www.securityfocus.com/archive/1/archive/1/419395/100/0/threaded BID   15823 Return to the previous page. Secunia PSI Scan | Patch | Track Free Download Secunia Poll Do you think it's important to read Setup/User Guides for applications for use within your network? Yes, I do it all the time Yes, but I do it rarely No See Results    Most Popular Advisories 1. Opera Multiple Vulnerabilities 2. Folder Lock Weak Password Encryption Security Issue 3. Anzio Web Print Object (WePO) ActiveX Component "mainurl" Buffer Overflow 4. vBulletin Private Message Subject Script Insertion 5. neon "parse_domain() " Denial of Service Vulnerability 6. SunShop Shopping Cart class.ajax.php SQL Injection Vulnerabilities 7. PHP Live Helper Multiple Vulnerabilities 8. Short Url & Url Tracker Script "id" SQL Injection Vulnerability 9. URL Rotator Script "id" SQL Injection Vulnerability 10. Programs Rating "id" SQL Injection Vulnerability
Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia