Cross Domain Verification in Object Tag Vulnerability

Cross Domain Verification in Object Tag Vulnerability

CVE-2002-0723 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Microsoft Internet Explorer 5.5 and 6.0 does not properly verify the domain of a frame within a browser window, which allows remote attackers to read client files or invoke executable objects via the Object tag, aka "Cross Domain Verification in Object Tag."

Learn more about our Web Application Penetration Testing UK.