Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2002-1187

Description

Cross-site scripting vulnerability (XSS) in Internet Explorer 5.01 through 6.0 allows remote attackers to read and execute files on the local system via web pages using the or element and javascript, aka "Frames Cross Site Scripting," as demonstrated using the PrivacyPolicy.dlg resource.</p> <h2>POC</h2> <h4>Reference</h4> <p>- http://marc.info/?l=bugtraq&m=103158601431054&w=2</p> <h4>Github</h4> <p>No PoCs found on GitHub currently.</p> </body> </html>