|
 |
|
|
|
| |
|
|
 |
|
LinkScanner Knowledge Base
 |
Exploit: Javascript window() (CVE-2005-1790)
|
Dated Posted: |
04.10.2007
|
Posted By: |
Roger Thompson - CTO
|
Category: |
Research
|
|
|
| |
A malicious web page contains code to call the window() function in response to a "BODY onload" event when the page loads. This then causes Microsoft Internet Explorer to crash, as was reported in the Bugtraq mailing list late in May, 2005. Later, by November 2005, a method was discovered and published by which, with the presence of properly injected code, the bug would cause the remote execution of that code. On 13 December, 2005, Microsoft issued a patch for all effected versions of Internet Explorer as part of a cumulative patch - (MSO5-054).
(CVE-2005-1790)
|
|
Return to Knowledge Base
|
|
|
Anti Virus Software | Eset NOD32 | Kaspersky | Eset Smart Security | Spyware
Removal Software | Spysweeper
Remove Adware |LinkScanner | LinkScanner Online | Firewalls | Outpost | SonicWALL | Disaster Recovery
Spam Blocker | Security Tools | Computer
Security Tips | Layered
Security Model | Security Software Resources
Solution Certifications | Trusted Reviews | Security Goal | Security
Links
Partners | Press Releases | White Papers | About
Us Home
|
|
Contact Software
Security Solutions at (303) 232-9070
Site Map | Privacy Policy | Legal Notice | Home
©
2008 Software Security Solutions. All rights reserved.
|
Cart