First published: Sat Apr 29 2006(Updated: )
Microsoft Internet Explorer before Windows XP Service Pack 2 and Windows Server 2003 Service Pack 1, when Prompt is configured in Security Settings, uses modal dialogs to verify that a user wishes to run an ActiveX control or perform other risky actions, which allows user-assisted remote attackers to construct a race condition that tricks a user into clicking an object or pressing keys that are actually applied to a "Yes" approval for executing the control.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Ie | =5.0 | |
Microsoft Ie | =5.0.1 | |
Microsoft Ie | =6.0-sp1 | |
Microsoft Ie | =5.0.1 | |
Microsoft Ie | =5.0 | |
Microsoft Ie | =5.0.1 | |
Microsoft Ie | =5.0.1 | |
Microsoft Ie | =5.0 | |
Microsoft Ie | =6.0-sp2 | |
Microsoft Ie | =5 | |
Microsoft Internet Explorer | =5.5-sp2 | |
Microsoft Internet Explorer | =5.0 | |
Microsoft Internet Explorer | =5.0.1 | |
Microsoft Internet Explorer | =5.0.1-sp2 | |
Microsoft Internet Explorer | =5.0.1-sp3 | |
Microsoft Internet Explorer | =5.0.1-sp4 | |
Microsoft Internet Explorer | =5.0.1-sp1 | |
Microsoft Internet Explorer | =5.5 | |
Microsoft Internet Explorer | =5.5-preview | |
Microsoft Internet Explorer | =5.5-sp1 | |
Microsoft Internet Explorer | =6.0 | |
Microsoft Internet Explorer | =7.0-beta1 | |
Microsoft Internet Explorer | =7.0-beta2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.