CVE-2002-0723 Information

Description

Microsoft Internet Explorer 5.5 and 6.0 does not properly verify the domain of a frame within a browser window which allows remote attackers to read client files or invoke executable objects via the Object tag aka \Cross Domain Verification in Object Tag.\

Reference

http://www.iss.net/security_center/static/9537.php http://www.securityfocus.com/bid/5196 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-047