CVE-2004-1050

Published Dec 31, 2004

Last updated 3 years ago

CVSS info 10.0

Overview

Description: Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the IFRAME vulnerability" or the "HTML Elements Vulnerability."
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:avaya:ip600_media_servers:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9692F8E9-E8E9-43A8-87D5-F2409333F8CC"
          },
          {
            "criteria": "cpe:2.3:a:avaya:ip600_media_servers:r6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "421DCFC1-D1DF-4081-96C1-A1FA69632B40"
          },
          {
            "criteria": "cpe:2.3:a:avaya:ip600_media_servers:r7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AB4E5D4-712A-4F8B-9571-23C5841FE653"
          },
          {
            "criteria": "cpe:2.3:a:avaya:ip600_media_servers:r8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B61857E-9B4A-480B-8381-4C1213063D8E"
          },
          {
            "criteria": "cpe:2.3:a:avaya:ip600_media_servers:r9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9AF988E-D84B-4F47-BBF6-E08C6615E838"
          },
          {
            "criteria": "cpe:2.3:a:avaya:ip600_media_servers:r10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74D156F2-E2BD-4E72-9776-21BCC3B3EC3A"
          },
          {
            "criteria": "cpe:2.3:a:avaya:ip600_media_servers:r11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC8CC2A7-E209-45FC-B4F7-83FAD79E2452"
          },
          {
            "criteria": "cpe:2.3:a:avaya:ip600_media_servers:r12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18CBDA7C-1E0E-470C-A740-807C559FBA43"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24DF2AB3-DEAB-4D70-986E-FFBB7E64B96A"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A19F6133-25D1-44A5-B6B9-354703436783"
          },
          {
            "criteria": "cpe:2.3:h:avaya:definity_one_media_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88301496-BED2-45EB-BF19-5F5BF2957373"
          },
          {
            "criteria": "cpe:2.3:h:avaya:definity_one_media_server:r6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8EB98D81-7F43-46BD-9713-C1036F123ECF"
          },
          {
            "criteria": "cpe:2.3:h:avaya:definity_one_media_server:r7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F71B32E1-650F-48F6-B04A-F54B5CB12FFF"
          },
          {
            "criteria": "cpe:2.3:h:avaya:definity_one_media_server:r8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C7A48D2-7CDB-40DE-95C0-EDF6CDDF7A80"
          },
          {
            "criteria": "cpe:2.3:h:avaya:definity_one_media_server:r9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F67BC930-C6D3-40FC-A44F-49A3A6E9B016"
          },
          {
            "criteria": "cpe:2.3:h:avaya:definity_one_media_server:r10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6469B5B2-9939-4163-A6C9-CC50D3358401"
          },
          {
            "criteria": "cpe:2.3:h:avaya:definity_one_media_server:r11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DCB9EF69-E099-4908-AC09-EE2811E39F55"
          },
          {
            "criteria": "cpe:2.3:h:avaya:definity_one_media_server:r12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3129813-C6BA-48B1-944B-D34D7A0F0F21"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s3400:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCB0BA4C-BA48-4DDA-917E-9EA9E04A898F"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8100:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D190CA6-7807-4361-8FB8-C015B21E66B1"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8100:r6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F28E0D07-ED87-44D0-A771-FB5C9D5CA32E"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8100:r7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F01F490-DA2A-4C89-9C9A-1B2B1CFF8849"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8100:r8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F867CCDD-DDAC-4802-8AE3-9CEDB7F0FDF3"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8100:r9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD501EF0-7531-47DD-A4A8-1F3790401A55"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8100:r10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7DC0D2D7-B6E2-40D3-8830-E0AF518253E7"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8100:r11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "436EF2B4-B365-4307-B345-24527D7B5909"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8100:r12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1562F7ED-5821-43AA-92CE-9BD7E67A47F8"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:avaya:modular_messaging_message_storage_server:s3400:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BFF29C7-E5AA-44EB-B1A9-602B3692D893"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References