JVN/CVE Demo: Cveinfos

CVE

Id: 12996
CVE No.: CVE-2005-1790
Status: Candidate
Description: Microsoft Internet Explorer 6 SP2 6.0.2900.2180 and 6.0.2800.1106, and earlier versions, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Javascript BODY onload event that calls the window function, aka "Mismatched Document Object Model Objects Memory Corruption Vulnerability."
Phase: Assigned (20050601)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
93616	12996	CVE-2005-1790	BUGTRAQ:20050528 Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005)	View
93617	12996	CVE-2005-1790	URL:http://marc.info/?l=bugtraq&m=111746394106172&w=2	View
93618	12996	CVE-2005-1790	BUGTRAQ:20050530 Re: Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005)	View
93619	12996	CVE-2005-1790	URL:http://marc.info/?l=bugtraq&m=111755552306013&w=2	View
93620	12996	CVE-2005-1790	BUGTRAQ:20051121 Computer Terrorism Security Advisory (Reclassification) - Microsoft Internet Explorer JavaScript Window() Vulnerability	View
93621	12996	CVE-2005-1790	URL:http://www.securityfocus.com/archive/1/archive/1/417326/30/0/threaded	View
93622	12996	CVE-2005-1790	MISC:http://www.computerterrorism.com/research/ie/ct21-11-2005	View
93623	12996	CVE-2005-1790	MISC:http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420	View
93624	12996	CVE-2005-1790	CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf	View
93625	12996	CVE-2005-1790	MS:MS05-054	View
93626	12996	CVE-2005-1790	URL:http://www.microsoft.com/technet/security/bulletin/ms05-054.mspx	View
93627	12996	CVE-2005-1790	CERT:TA05-347A	View
93628	12996	CVE-2005-1790	URL:http://www.us-cert.gov/cas/techalerts/TA05-347A.html	View
93629	12996	CVE-2005-1790	CERT-VN:VU#887861	View
93630	12996	CVE-2005-1790	URL:http://www.kb.cert.org/vuls/id/887861	View
93631	12996	CVE-2005-1790	BID:13799	View
93632	12996	CVE-2005-1790	URL:http://www.securityfocus.com/bid/13799	View
93633	12996	CVE-2005-1790	VUPEN:ADV-2005-2509	View
93634	12996	CVE-2005-1790	URL:http://www.vupen.com/english/advisories/2005/2509	View
93635	12996	CVE-2005-1790	VUPEN:ADV-2005-2867	View
93636	12996	CVE-2005-1790	URL:http://www.vupen.com/english/advisories/2005/2867	View
93637	12996	CVE-2005-1790	VUPEN:ADV-2005-2909	View
93638	12996	CVE-2005-1790	URL:http://www.vupen.com/english/advisories/2005/2909	View
93639	12996	CVE-2005-1790	OVAL:oval:org.mitre.oval:def:1091	View
93640	12996	CVE-2005-1790	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1091	View
93641	12996	CVE-2005-1790	OVAL:oval:org.mitre.oval:def:1299	View
93642	12996	CVE-2005-1790	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1299	View
93643	12996	CVE-2005-1790	OVAL:oval:org.mitre.oval:def:1303	View
93644	12996	CVE-2005-1790	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1303	View
93645	12996	CVE-2005-1790	OVAL:oval:org.mitre.oval:def:1489	View
93646	12996	CVE-2005-1790	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1489	View
93647	12996	CVE-2005-1790	OVAL:oval:org.mitre.oval:def:1508	View
93648	12996	CVE-2005-1790	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1508	View
93649	12996	CVE-2005-1790	OVAL:oval:org.mitre.oval:def:722	View
93650	12996	CVE-2005-1790	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:722	View
93651	12996	CVE-2005-1790	SECTRACK:1015251	View
93652	12996	CVE-2005-1790	URL:http://securitytracker.com/id?1015251	View
93653	12996	CVE-2005-1790	SECUNIA:15368	View
93654	12996	CVE-2005-1790	URL:http://secunia.com/advisories/15368	View
93655	12996	CVE-2005-1790	SECUNIA:15546	View
93656	12996	CVE-2005-1790	URL:http://secunia.com/advisories/15546	View
93657	12996	CVE-2005-1790	SECUNIA:18064	View
93658	12996	CVE-2005-1790	URL:http://secunia.com/advisories/18064	View
93659	12996	CVE-2005-1790	SECUNIA:18311	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.32 MB
View render complete	2.79 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.64
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	468.55
Event: Controller.beforeRender	5.22
» Processing toolbar data	5.12
Rendering View	13.43
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	12.45
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.56
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.09
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/12996
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/12996
Remote Port	23377
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.173
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.3.25.50
Http Via	1.1 squid-proxy-5b5d847c96-mtcd4 (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.173
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.173
Unique Id	aMQVffQLM_rF5AQd4as33QAAAbM
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.173
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.173
Redirect Unique Id	aMQVffQLM_rF5AQd4as33QAAAbM
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.173
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.173
Redirect Redirect Unique Id	aMQVffQLM_rF5AQd4as33QAAAbM
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1757681021.8653
Request Time	1757681021

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files