FrontRange GoldMine mail agent 5.70 and 6.00 before 30503 directly sends HTML to the default browser without setting its security zone or otherwise labeling it untrusted, which allows remote attackers to execute arbitrary code via a message that is rendered in IE using a less secure zone.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0091.html | Exploit Patch Vendor Advisory |
http://www.secnap.net/security/gm001.html | Exploit Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2003-05-30T04:00:00
Updated: 2021-06-15T16:35:37
Reserved: 2003-05-01T00:00:00
Link: CVE-2003-0241
JSON object: View
NVD Information
Status : Analyzed
Published: 2003-06-09T04:00:00.000
Modified: 2008-09-05T20:33:50.333
Link: CVE-2003-0241
JSON object: View
Redhat Information
No data.
CWE