Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0475

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2004-0475
Last Modified 05 Sep 2008 04:38:31
Published 07 Jul 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2004-0475

Summary

The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM files via a double backward slash ("\\") before the target CHM file, as demonstrated using an "ms-its" URL to ntshared.chm. NOTE: this bug may overlap CVE-2003-1041.

Vulnerable Systems

Application

  • Microsoft Ie 6.0


References

XF - ie-showhelp-chm-execution(16147)

BID - 10348

BUGTRAQ - 20040513 Showhelp() local CHM file execution


Last Updated: 27 May 2016 10:38:37