CVE-2003-1026

Severity

93%

Complexity

86%

Confidentiality

165%

Internet Explorer 5.01 through 6 SP1 allows remote attackers to bypass zone restrictions via a javascript protocol URL in a sub-frame, which is added to the history list and executed in the top window's zone when the history.back (back) function is called, as demonstrated by BackToFramedJpu, aka the "Travel Log Cross Domain Vulnerability."

Internet Explorer 5.01 through 6 SP1 allows remote attackers to bypass zone restrictions via a javascript protocol URL in a sub-frame, which is added to the history list and executed in the top window's zone when the history.back (back) function is called, as demonstrated by BackToFramedJpu, aka the "Travel Log Cross Domain Vulnerability."

CVSS 2.0 Base Score 9.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C).

Overview

Type

Microsoft

First reported 21 years ago

2004-01-20 05:00:00

Last updated 6 years ago

2018-10-12 21:33:00

Affected Software

Microsoft Internet Explorer 5.0

5.0

Microsoft Internet Explorer 5.0.1

5.0.1

Microsoft Internet Explorer 5.0.1 SP1

5.0.1

Microsoft Internet Explorer 5.0.1 SP2

5.0.1

Microsoft Internet Explorer 5.0.1 SP3

5.0.1

Microsoft ie 5.5

5.5

Microsoft Internet Explorer 5.5 SP1

5.5

Microsoft Internet Explorer 5.5 SP2

5.5

Microsoft Internet Explorer 6.0

6.0

References

20031125 BackToFramedJpu - a successor of BackToJpu attack

20031201 Comments on 5 IE vulnerabilities

VU#784102

Third Party Advisory, US Government Resource

http://www.safecenter.net/UMBRELLAWEBV4/BackToFramedJpu

TA04-033A

US Government Resource

MS04-004

ie-subframe-xss(13846)

oval:org.mitre.oval:def:630

oval:org.mitre.oval:def:643

oval:org.mitre.oval:def:687

oval:org.mitre.oval:def:689

oval:org.mitre.oval:def:745

oval:org.mitre.oval:def:774

oval:org.mitre.oval:def:805

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.