exploitDog

CVE-2003-0241

Опубликовано: 09 июн. 2003

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

FrontRange GoldMine mail agent 5.70 and 6.00 before 30503 directly sends HTML to the default browser without setting its security zone or otherwise labeling it untrusted, which allows remote attackers to execute arbitrary code via a message that is rendered in IE using a less secure zone.

Ссылки

http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0091.html
Exploit
Patch
Vendor Advisory
http://www.secnap.net/security/gm001.html
Exploit
Patch
Vendor Advisory
http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0091.html
Exploit
Patch
Vendor Advisory
http://www.secnap.net/security/gm001.html
Exploit
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:frontrange:goldmine:5.70:*:*:*:*:*:*:*

cpe:2.3:a:frontrange:goldmine:6.00:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.02719

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-79v6-pg2f-3mmc

github

почти 4 года назад

FrontRange GoldMine mail agent 5.70 and 6.00 before 30503 directly sends HTML to the default browser without setting its security zone or otherwise labeling it untrusted, which allows remote attackers to execute arbitrary code via a message that is rendered in IE using a less secure zone.

EPSS

Процентиль: 86%

0.02719

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other