CVE-2004-0727 Information

Description

Microsoft Internet Explorer 6.0.2800.1106 on Microsoft Windows XP SP2 and other versions including 5.01 and 5.5 allows remote web servers to bypass zone restrictions and execute arbitrary code in the local computer zone by redirecting a function to another function with the same name as demonstrated by SimilarMethodNameRedir aka the \Similar Method Name Redirection Cross Domain Vulnerability.\

Reference

http://freehost07.websamba.com/greyhats/similarmethodnameredir.htm http://marc.info/?l=bugtraq&m=108966512815373&w=2 http://secunia.com/advisories/12048 http://www.kb.cert.org/vuls/id/207264 http://www.us-cert.gov/cas/techalerts/TA04-293A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038 https://exchange.xforce.ibmcloud.com/vulnerabilities/16681 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A4702 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A6829 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A7084 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A7448 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A7496 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A7906