Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Internet Explorer 5.01 through 6.0 does not properly handle object tags returned from a Web server during XML data binding, which allows remote attackers to execute arbitrary code via an HTML e-mail message or web page.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Explorer XML页对象类型确认漏洞
Vulnerability Description
Microsoft Internet Explorer是一款流行的WEB浏览程序。 Microsoft Internet Explorer当处理基于XML的WEB站点时没有正确处理对象类型,远程攻击者可以利用这个漏洞把恶意对象安装并在系统上执行。 由于没有正确处理嵌入在XML页面中的对象类型,攻击者构建包含恶意对象的XML页面,诱使用户访问, 可导致目标用户会把这个对象以可信对象装载处理,因此精心构建对象数据可以在目标用户上安装和执行任意程序。
CVSS Information
N/A
Vulnerability Type
N/A