CVE-2005-1186 Information

Description

Musicmatch Jukebox 10.00.2047 and earlier adds the musicmatch.com domain to the Trusted Sites zone in Internet Explorer which allows systems in the domain to conduct unauthorized activities as demonstrated using cross-site scripting (XSS) attacks.

Reference

http://seclists.org/lists/bugtraq/2005/Apr/0212.html http://securitytracker.com/id?1013718 http://www.hyperdose.com/advisories/H2005-04.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/20129