Cross Domain Verification in Object Tag Vulnerability
CVE-2002-0723 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
Microsoft Internet Explorer 5.5 and 6.0 does not properly verify the domain of a frame within a browser window, which allows remote attackers to read client files or invoke executable objects via the Object tag, aka "Cross Domain Verification in Object Tag."
Learn more about our Web Application Penetration Testing UK.