cvelist/2004/1xxx/CVE-2004-1050.json

{
   "CVE_data_meta" : {
      "ASSIGNER" : "cve@mitre.org",
      "ID" : "CVE-2004-1050",
      "STATE" : "PUBLIC"
   },
   "affects" : {
      "vendor" : {
         "vendor_data" : [
            {
               "product" : {
                  "product_data" : [
                     {
                        "product_name" : "n/a",
                        "version" : {
                           "version_data" : [
                              {
                                 "version_value" : "n/a"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name" : "n/a"
            }
         ]
      }
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
   "data_version" : "4.0",
   "description" : {
      "description_data" : [
         {
            "lang" : "eng",
            "value" : "Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka \"the IFRAME vulnerability\" or the \"HTML Elements Vulnerability.\""
         }
      ]
   },
   "problemtype" : {
      "problemtype_data" : [
         {
            "description" : [
               {
                  "lang" : "eng",
                  "value" : "n/a"
               }
            ]
         }
      ]
   },
   "references" : {
      "reference_data" : [
         {
            "name" : "20041023 python does mangleme (with IE bugs!)",
            "refsource" : "FULLDISC",
            "url" : "http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/028009.html"
         },
         {
            "name" : "20041025 python does mangleme (with IE bugs!)",
            "refsource" : "FULLDISC",
            "url" : "http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/028035.html"
         },
         {
            "name" : "20041024 python does mangleme (with IE bugs!)",
            "refsource" : "BUGTRAQ",
            "url" : "http://www.securityfocus.com/archive/1/379261"
         },
         {
            "name" : "20041102 MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC",
            "refsource" : "BUGTRAQ",
            "url" : "http://marc.info/?l=bugtraq&m=109942758911846&w=2"
         },
         {
            "name" : "MS04-040",
            "refsource" : "MS",
            "url" : "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-040"
         },
         {
            "name" : "TA04-315A",
            "refsource" : "CERT",
            "url" : "http://www.us-cert.gov/cas/techalerts/TA04-315A.html"
         },
         {
            "name" : "TA04-336A",
            "refsource" : "CERT",
            "url" : "http://www.us-cert.gov/cas/techalerts/TA04-336A.html"
         },
         {
            "name" : "VU#842160",
            "refsource" : "CERT-VN",
            "url" : "http://www.kb.cert.org/vuls/id/842160"
         },
         {
            "name" : "oval:org.mitre.oval:def:1294",
            "refsource" : "OVAL",
            "url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1294"
         },
         {
            "name" : "12959",
            "refsource" : "SECUNIA",
            "url" : "http://secunia.com/advisories/12959/"
         },
         {
            "name" : "11515",
            "refsource" : "BID",
            "url" : "http://www.securityfocus.com/bid/11515"
         },
         {
            "name" : "ie-iframe-src-name-bo(17889)",
            "refsource" : "XF",
            "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/17889"
         }
      ]
   }
}