Bypassing Popup Blocker in Internet Explorer 6 via DHTML Editing Component (DEC) and Javascript

Bypassing Popup Blocker in Internet Explorer 6 via DHTML Editing Component (DEC) and Javascript

CVE-2004-1173 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Internet Explorer 6 allows remote attackers to bypass the popup blocker via the document object model (DOM) methods in the DHTML Dynamic HTML (DHTML) Editing Component (DEC) and Javascript that calls showModalDialog.

Learn more about our Web Application Penetration Testing UK.