CVE-2003-1026 Information
Description
Internet Explorer 5.01 through 6 SP1 allows remote attackers to bypass zone restrictions via a javascript protocol URL in a sub-frame which is added to the history list and executed in the top window’s zone when the history.back (back) function is called as demonstrated by BackToFramedJpu aka the \Travel Log Cross Domain Vulnerability.\
Reference
http://marc.info/?l=bugtraq&m=106979349517578&w=2 http://marc.info/?l=bugtraq&m=107038202225587&w=2 http://www.kb.cert.org/vuls/id/784102 http://www.safecenter.net/UMBRELLAWEBV4/BackToFramedJpu http://www.us-cert.gov/cas/techalerts/TA04-033A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-004 https://exchange.xforce.ibmcloud.com/vulnerabilities/13846 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A630 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A643 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A687 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A689 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A745 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A774 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A805
Share on: