Microsoft Internet Explorer 5/6 - 'file://' Request Zone Bypass
| EKU-ID: 28051 | CVE: CVE-2003-0309;OSVDB-2968 | OSVDB-ID: |
| Author: Marek Bialoglowy | Published: 2003-05-09 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 28051 | CVE: CVE-2003-0309;OSVDB-2968 | OSVDB-ID: |
| Author: Marek Bialoglowy | Published: 2003-05-09 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/7539/info Internet Explorer is reported to be vulnerable to a zone bypass issue. Allegedly, if Internet Explorer attempts to open a web page containing numerous 'file://' requests each contained in a separate Iframe, the requested file will eventually be executed in the Local Computer zone. https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/22575.rar (dmz.rar Password: zones)