CVE-2003-0816
First published: Wed Jan 14 2004(Updated: )
Internet Explorer 6 SP1 and earlier allows remote attackers to bypass zone restrictions by (1) using the NavigateAndFind method to load a file: URL containing Javascript, as demonstrated by NAFfileJPU, (2) using the window.open method to load a file: URL containing Javascript, as demonstrated using WsOpenFileJPU, (3) setting the href property in the base tag for the _search window, as demonstrated using WsBASEjpu, (4) loading the search window into an Iframe, as demonstrated using WsFakeSrc, (5) caching a javascript: URL in the browser history, then accessing that URL in the same frame as the target domain, as demonstrated using WsOpenJpuInHistory, NAFjpuInHistory, BackMyParent, BackMyParent2, and RefBack, aka the "Script URLs Cross Domain" vulnerability.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Internet Explorer | =6.0-sp1 | |
| Internet Explorer | =5.5-sp2 | |
| Internet Explorer | =5.0.1 | |
| Internet Explorer | =5.0.1-sp2 | |
| Internet Explorer | =5.0.1-sp3 | |
| Internet Explorer | =5.0.1-sp1 | |
| Internet Explorer | =5.5 | |
| Internet Explorer | =5.5-sp1 | |
| Internet Explorer | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.kb.cert.org/vuls/id/652452
- http://www.safecenter.net/UMBRELLAWEBV4/NAFfileJPU/NAFfileJPU-Content.htm
- http://www.safecenter.net/UMBRELLAWEBV4/WsOpenFileJPU/WsOpenFileJPU-Content.HTM
- http://www.safecenter.net/liudieyu/WsBASEjpu/WsBASEjpu-Content.HTM
- http://www.safecenter.net/liudieyu/WsFakeSrc/WsFakeSrc-Content.HTM
- http://www.safecenter.net/liudieyu/WsOpenJpuInHistory/WsOpenJpuInHistory-Content.HTM
- http://www.safecenter.net/liudieyu/NAFjpuInHistory/NAFjpuInHistory-Content.HTM
- http://www.safecenter.net/liudieyu/BackMyParent2/BackMyParent2-Content.HTM
- http://www.safecenter.net/liudieyu/BackMyParent/BackMyParent-content.htm
- http://www.safecenter.net/liudieyu/RefBack/RefBack-Content.HTM
- http://www.securityfocus.com/archive/1/337086
- http://www.kb.cert.org/vuls/id/771604
- http://www.securityfocus.com/archive/1/336937
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2003-09/0146.html
- http://securitytracker.com/id?1007687
- http://secunia.com/advisories/10192
- http://marc.info/?l=bugtraq&m=106321882821788&w=2
- http://marc.info/?l=bugtraq&m=106322240132721&w=2
- http://marc.info/?l=bugtraq&m=106322063729496&w=2
- http://marc.info/?l=bugtraq&m=106321781819727&w=2
- http://marc.info/?l=bugtraq&m=106321638416884&w=2
- http://marc.info/?l=bugtraq&m=106321693517858&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A479
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A459
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A416
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A409
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A363
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A362
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A361
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-048
Frequently Asked Questions
What is the severity of CVE-2003-0816?
CVE-2003-0816 is considered to have a high severity rating as it allows attackers to bypass security zone restrictions.
How do I fix CVE-2003-0816?
To fix CVE-2003-0816, users are advised to upgrade to a more recent version of Internet Explorer that is not affected by this vulnerability.
Which versions of Internet Explorer are affected by CVE-2003-0816?
CVE-2003-0816 affects Internet Explorer versions 5.0.1, 5.5, and 6.0 with all their respective service packs.
What type of vulnerability is CVE-2003-0816?
CVE-2003-0816 is a security vulnerability that involves remote code execution through JavaScript manipulation.
Can CVE-2003-0816 lead to further attacks?
Yes, CVE-2003-0816 can potentially allow attackers to execute arbitrary scripts, which may lead to further attacks or compromise of the user's system.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/remedy
- agent/last-modified-date
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft internet explorer
- version/microsoft internet explorer/6.0-sp1
- canonical/internet explorer
- version/internet explorer/5.5-sp2
- version/internet explorer/5.0.1
- version/internet explorer/5.0.1-sp2
- version/internet explorer/5.0.1-sp3
- version/internet explorer/5.0.1-sp1
- version/internet explorer/5.5
- version/internet explorer/5.5-sp1
- version/internet explorer/6.0