← Back

CVE-2004-0839

nvd nist
Published: Aug 18, 2004Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:P/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbitrary programs via a web page that uses certain styles and the AnchorClick behavior, popup windows, and drag-and-drop capabilities to drop the program in the local startup folder, as demonstrated by "wottapoop.html".

Affected (46)

Avaya
5 products
Definity One Media Server
Ip600 Media Servers
S3400
S8100
Modular Messaging Message Storage Server
Microsoft
8 products
Ie
Internet Explorer
Windows 2000
Windows 2003 Server
Windows 98
Windows 98se
Windows Me
Windows Xp
Nortel
5 products
Ip Softphone 2050
Mobile Voice Client 2050
Optivity Telephony Manager
Symposium Web Centre Portal
Symposium Web Client
Configuration A
15 vulnerable
Vulnerable SoftwareAffected Versions
Definity One Media Server
All versions
Ip600 Media Servers
All versions
S3400
All versions
S8100
All versions
Microsoft
Ie
Version 6.0 sp1
Ie
Version 6.0 sp2
Microsoft
Internet Explorer
Version 5.0.1
Internet Explorer
Version 5.0.1 sp1
Internet Explorer
Version 5.0.1 sp2
Internet Explorer
Version 5.0.1 sp3
Internet Explorer
Version 5.0.1 sp4
Internet Explorer
Version 5.5
Internet Explorer
Version 5.5 sp1
Internet Explorer
Version 5.5 sp2
Internet Explorer
Version 6.0
Configuration B
31 vulnerable
Vulnerable SoftwareAffected Versions
Avaya
Modular Messaging Message Storage Server
Version 1.1
Modular Messaging Message Storage Server
Version 2.0
Microsoft
Windows 2000
All versions
Windows 2000
All versions
Windows 2000
All versions
Windows 2000
All versions
Windows 2000
All versions
Microsoft
Windows 2003 Server
Version enterprise
Windows 2003 Server
Version enterprise_64-bit
Windows 2003 Server
Version r2
Windows 2003 Server
Version r2
Windows 2003 Server
Version standard
Windows 2003 Server
Version web
Windows 98
All versions
Windows 98se
All versions
Windows Me
All versions
Microsoft
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions
Ip Softphone 2050
All versions
Mobile Voice Client 2050
All versions
Optivity Telephony Manager
All versions
Symposium Web Centre Portal
All versions
Symposium Web Client
All versions

References (28)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
PatchThird Party AdvisoryUS Government Resource
Source: cve@mitre.org
ExploitPatchVendor Advisory
Source: cve@mitre.org
PatchThird Party AdvisoryUS Government Resource
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.