CVE-2003-0815 Information

Description

Internet Explorer 6 SP1 and earlier allows remote attackers to bypass zone restrictions and read arbitrary files by (1) modifying the createTextRange method and using CreateLink as demonstrated using LinkillerSaveRef LinkillerJPU and Linkiller or (2) modifying the createRange method and using the FIND dialog to select text as demonstrated using Findeath aka the \Function Pointer Override Cross Domain\ vulnerability.

Reference

http://marc.info/?l=bugtraq&m=106321757619047&w=2 http://marc.info/?l=bugtraq&m=106322542104656&w=2 http://secunia.com/advisories/10192 http://securitytracker.com/id?1007687 http://www.ciac.org/ciac/bulletins/o-021.shtml http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2003-09/0150.html http://www.osvdb.org/7888 http://www.osvdb.org/7889 http://www.safecenter.net/UMBRELLAWEBV4/Linkiller/Linkiller-Content.HTM http://www.safecenter.net/UMBRELLAWEBV4/LinkillerJPU/LinkillerJPU-Content.HTM http://www.safecenter.net/UMBRELLAWEBV4/LinkillerSaveRef/LinkillerSaveRef-Content.HTM http://www.securityfocus.com/archive/1/337086 http://www.securityfocus.com/bid/9014 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-048 https://exchange.xforce.ibmcloud.com/vulnerabilities/13676 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A351 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A352 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A353 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A356 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A357 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A359 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A472