CVE
- Id
- 9269
- CVE No.
- CVE-2004-0841
- Status
- Candidate
- Description
- Internet Explorer 6.x allows remote attackers to install arbitrary programs via mousedown events that call the Popup.show method and use drag-and-drop actions in a popup window, aka "HijackClick 3" and the "Script in Image Tag File Download Vulnerability."
- Phase
- Assigned (20040908)
- Votes
- None (candidate not yet proposed)
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 61370 | 9269 | CVE-2004-0841 | BUGTRAQ:20040711 HijackClick 3 | View |
| 61371 | 9269 | CVE-2004-0841 | URL:http://www.securityfocus.com/archive/1/368652 | View |
| 61372 | 9269 | CVE-2004-0841 | BUGTRAQ:20040712 Re: HijackClick 3 | View |
| 61373 | 9269 | CVE-2004-0841 | URL:http://www.securityfocus.com/archive/1/368666 | View |
| 61374 | 9269 | CVE-2004-0841 | FULLDISC:20040712 Brand New Hole: Internet Explorer: HijackClick 3 | View |
| 61375 | 9269 | CVE-2004-0841 | URL:http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0498.html | View |
| 61376 | 9269 | CVE-2004-0841 | MS:MS04-038 | View |
| 61377 | 9269 | CVE-2004-0841 | URL:http://www.microsoft.com/technet/security/bulletin/ms04-038.asp | View |
| 61378 | 9269 | CVE-2004-0841 | CERT:TA04-293A | View |
| 61379 | 9269 | CVE-2004-0841 | URL:http://www.us-cert.gov/cas/techalerts/TA04-293A.html | View |
| 61380 | 9269 | CVE-2004-0841 | CERT-VN:VU#413886 | View |
| 61381 | 9269 | CVE-2004-0841 | URL:http://www.kb.cert.org/vuls/id/413886 | View |
| 61382 | 9269 | CVE-2004-0841 | BID:10690 | View |
| 61383 | 9269 | CVE-2004-0841 | URL:http://www.securityfocus.com/bid/10690 | View |
| 61384 | 9269 | CVE-2004-0841 | OSVDB:7774 | View |
| 61385 | 9269 | CVE-2004-0841 | URL:http://www.osvdb.org/7774 | View |
| 61386 | 9269 | CVE-2004-0841 | OVAL:oval:org.mitre.oval:def:2611 | View |
| 61387 | 9269 | CVE-2004-0841 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2611 | View |
| 61388 | 9269 | CVE-2004-0841 | OVAL:oval:org.mitre.oval:def:4363 | View |
| 61389 | 9269 | CVE-2004-0841 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:4363 | View |
| 61390 | 9269 | CVE-2004-0841 | OVAL:oval:org.mitre.oval:def:5620 | View |
| 61391 | 9269 | CVE-2004-0841 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5620 | View |
| 61392 | 9269 | CVE-2004-0841 | OVAL:oval:org.mitre.oval:def:6031 | View |
| 61393 | 9269 | CVE-2004-0841 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6031 | View |
| 61394 | 9269 | CVE-2004-0841 | OVAL:oval:org.mitre.oval:def:6048 | View |
| 61395 | 9269 | CVE-2004-0841 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6048 | View |
| 61396 | 9269 | CVE-2004-0841 | OVAL:oval:org.mitre.oval:def:8077 | View |
| 61397 | 9269 | CVE-2004-0841 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8077 | View |
| 61398 | 9269 | CVE-2004-0841 | SECTRACK:1010679 | View |
| 61399 | 9269 | CVE-2004-0841 | URL:http://securitytracker.com/id?1010679 | View |
| 61400 | 9269 | CVE-2004-0841 | SECUNIA:12048 | View |
| 61401 | 9269 | CVE-2004-0841 | URL:http://secunia.com/advisories/12048 | View |
| 61402 | 9269 | CVE-2004-0841 | XF:ie-popupshow-perform-actions(16675) | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 62921 | JVNDB-2004-000263 | Microsoft Internet Explorer の CSS の処理におけるバッファオーバーフローの脆弱性 | Microsoft Internet Explorer において、CSS (Cascading StyleSheet) の取り扱いの不備のため、コメントを閉じる "*/" が存在していない STYLE タグを解釈した場合、バッファオーバーフローが発生する脆弱性が存在します。 | CVE-2004-0842 | 9269 | 7.5 | http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000263.html | View |
