| Vulnerability Name: | CVE-2005-0054 (CCN-16398) | ||||||||||||||||||||||||
| Assigned: | 2004-06-10 | ||||||||||||||||||||||||
| Published: | 2004-06-10 | ||||||||||||||||||||||||
| Updated: | 2021-07-23 | ||||||||||||||||||||||||
| Summary: | Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability." | ||||||||||||||||||||||||
| CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||||||||||||||
| CVSS v2 Severity: | 5.1 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
| ||||||||||||||||||||||||
| Vulnerability Type: | CWE-Other | ||||||||||||||||||||||||
| Vulnerability Consequences: | Gain Access | ||||||||||||||||||||||||
| References: | Source: CCN Type: Full-Disclosure Mailing List, Thu Jun 10 2004 - 15:35:03 CDT COELACANTH: Phreak Phishing Expedition Source: CCN Type: Full-Disclosure Mailing List, Thu Jun 10 2004 - 18:48:04 CDT Notes: COELACANTH: Phreak Phishing Expedition Source: CCN Type: Full-Disclosure Mailing List, Fri Jun 11 2004 - 09:00:54 CDT RE: [Full-Disclosure] RE: COELACANTH: Phreak Phishing Expedition Source: MITRE Type: CNA CVE-2005-0054 Source: BUGTRAQ Type: UNKNOWN 20050209 Internet Explorer zone spoofing with encoded URLs Source: CCN Type: CIAC Information Bulletin P-125 Microsoft Cumulative Security Update for Internet Explorer Source: CCN Type: US-CERT VU#580299 Microsoft Internet Explorer contains URL decoding cross-domain vulnerability Source: CERT-VN Type: Patch, Third Party Advisory, US Government Resource VU#580299 Source: CCN Type: Microsoft Security Bulletin MS05-014 Cumulative Security Update for Internet Explorer (867282) Source: CCN Type: Microsoft Security Bulletin MS05-020 Cumulative Security Update for Internet Explorer (890923) Source: CCN Type: Microsoft Security Bulletin MS05-025 Cumulative Security Update for Internet Explorer (883939) Source: CCN Type: Microsoft Security Bulletin MS05-038 Cumulative Security Update for Internet Explorer (896727) Source: CCN Type: Microsoft Security Bulletin MS05-052 Cumulative Security Update for Internet Explorer (896688) Source: CCN Type: Microsoft Security Bulletin MS05-054 Cumulative Security Update for Internet Explorer (905915) Source: CCN Type: Microsoft Security Bulletin MS06-004 Cumulative Security Update for Internet Explorer (910620) Source: CCN Type: Microsoft Security Bulletin MS06-013 Cumulative Security Update for Internet Explorer (912812) Source: CCN Type: Microsoft Security Bulletin MS06-021 Cumulative Security Update for Internet Explorer (916281) Source: CCN Type: Microsoft Security Bulletin MS06-042 Cumulative Security Update for Internet Explorer (918899) Source: CCN Type: Microsoft Security Bulletin MS06-067 Cumulative Security Update for Internet Explorer (922760) Source: CCN Type: Microsoft Security Bulletin MS06-072 Cumulative Security Update for Internet Explorer (925454) Source: CCN Type: Microsoft Security Bulletin MS07-016 Cumulative Security Update for Internet Explorer (928090) Source: CCN Type: Microsoft Security Bulletin MS07-027 Cumulative Security Update for Internet Explorer (931768) Source: CCN Type: Microsoft Security Bulletin MS07-033 Cumulative Security Update for Internet Explorer (933566) Source: CCN Type: Microsoft Security Bulletin MS07-045 Cumulative Security Update for Internet Explorer (937143) Source: CCN Type: Microsoft Security Bulletin MS07-057 Cumulative Security Update for Internet Explorer (939653) Source: CCN Type: Microsoft Security Bulletin MS07-069 Cumulative Security Update for Internet Explorer (942615) Source: CCN Type: Microsoft Security Bulletin MS08-010 Cumulative Security Update for Internet Explorer (944533) Source: CCN Type: Microsoft Security Bulletin MS08-024 Cumulative Security Update for Internet Explorer (947864) Source: CCN Type: Microsoft Security Bulletin MS08-031 Cumulative Security Update for Internet Explorer (950759) Source: CCN Type: Microsoft Security Bulletin MS08-045 Cumulative Security Update for Internet Explorer (953838) Source: CCN Type: Microsoft Security Bulletin MS08-058 Cumulative Security Update for Internet Explorer (956390) Source: CCN Type: BID-10517 Multiple Browser URI Obfuscation Weakness Source: CCN Type: BID-10532 Mozilla Browser URI Obfuscation Weakness Source: CCN Type: BID-10579 Microsoft Internet Explorer Non-FQDN URI Address Zone Bypass Vulnerability Source: CCN Type: BID-12473 Microsoft Internet Explorer URI Decoding Vulnerability Source: CERT Type: Patch, US Government Resource TA05-039A Source: MS Type: UNKNOWN MS05-014 Source: XF Type: UNKNOWN ie-security-zone-bypass(16398) Source: XF Type: UNKNOWN ie-file-url-encode(19214) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:1308 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:1736 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:3060 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:3196 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:3586 | ||||||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||||||||||||||
| Vulnerability Name: | CVE-2005-0054 (CCN-19214) | ||||||||||||||||||||||||
| Assigned: | 2005-02-08 | ||||||||||||||||||||||||
| Published: | 2005-02-08 | ||||||||||||||||||||||||
| Updated: | 2005-02-08 | ||||||||||||||||||||||||
| Summary: | Microsoft Internet Explorer running on Windows 2000, Windows XP, Windows Server 2003, Windows 98, and Windows ME could allow a remote attacker to execute arbitrary code on the system, caused by a vulnerability in the way Internet Explorer parses and validates certain types of encoded URLs. A remote attacker could create a specially-crafted encoded URL, which would cause a page that would normally be run in the Internet Zone to be run in the less restrictive Intranet Zone or My Computer zone, once the link is clicked. An attacker could exploit this vulnerability to execute arbitrary code on the system with rights of the victim by creating a malicious Web page and hosting it on a Web site or by sending it to a victim as an HTML email. | ||||||||||||||||||||||||
| CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||||||||||||||
| CVSS v2 Severity: | 5.1 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
| ||||||||||||||||||||||||
| Vulnerability Consequences: | Gain Access | ||||||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2005-0054 Source: CCN Type: CIAC Information Bulletin P-125 Microsoft Cumulative Security Update for Internet Explorer Source: CCN Type: US-CERT VU#580299 Microsoft Internet Explorer contains URL decoding cross-domain vulnerability Source: CCN Type: Microsoft Security Bulletin MS05-014 Cumulative Security Update for Internet Explorer (867282) Source: CCN Type: Microsoft Security Bulletin MS05-020 Cumulative Security Update for Internet Explorer (890923) Source: CCN Type: Microsoft Security Bulletin MS05-025 Cumulative Security Update for Internet Explorer (883939) Source: CCN Type: Microsoft Security Bulletin MS05-038 Cumulative Security Update for Internet Explorer (896727) Source: CCN Type: Microsoft Security Bulletin MS05-052 Cumulative Security Update for Internet Explorer (896688) Source: CCN Type: Microsoft Security Bulletin MS05-054 Cumulative Security Update for Internet Explorer (905915) Source: CCN Type: Microsoft Security Bulletin MS06-004 Cumulative Security Update for Internet Explorer (910620) Source: CCN Type: Microsoft Security Bulletin MS06-013 Cumulative Security Update for Internet Explorer (912812) Source: CCN Type: Microsoft Security Bulletin MS06-021 Cumulative Security Update for Internet Explorer (916281) Source: CCN Type: Microsoft Security Bulletin MS06-042 Cumulative Security Update for Internet Explorer (918899) Source: CCN Type: Microsoft Security Bulletin MS06-067 Cumulative Security Update for Internet Explorer (922760) Source: CCN Type: Microsoft Security Bulletin MS06-072 Cumulative Security Update for Internet Explorer (925454) Source: CCN Type: Microsoft Security Bulletin MS07-016 Cumulative Security Update for Internet Explorer (928090) Source: CCN Type: Microsoft Security Bulletin MS07-027 Cumulative Security Update for Internet Explorer (931768) Source: CCN Type: Microsoft Security Bulletin MS07-033 Cumulative Security Update for Internet Explorer (933566) Source: CCN Type: Microsoft Security Bulletin MS07-045 Cumulative Security Update for Internet Explorer (937143) Source: CCN Type: Microsoft Security Bulletin MS07-057 Cumulative Security Update for Internet Explorer (939653) Source: CCN Type: Microsoft Security Bulletin MS07-069 Cumulative Security Update for Internet Explorer (942615) Source: CCN Type: Microsoft Security Bulletin MS08-010 Cumulative Security Update for Internet Explorer (944533) Source: CCN Type: Microsoft Security Bulletin MS08-024 Cumulative Security Update for Internet Explorer (947864) Source: CCN Type: Microsoft Security Bulletin MS08-031 Cumulative Security Update for Internet Explorer (950759) Source: CCN Type: Microsoft Security Bulletin MS08-045 Cumulative Security Update for Internet Explorer (953838) Source: CCN Type: Microsoft Security Bulletin MS08-058 Cumulative Security Update for Internet Explorer (956390) Source: CCN Type: BID-12473 Microsoft Internet Explorer URI Decoding Vulnerability Source: XF Type: UNKNOWN ie-file-url-encode(19214) | ||||||||||||||||||||||||
| Vulnerable Configuration: | Configuration CCN 1: Denotes that component is vulnerable | ||||||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||||||
| |||||||||||||||||||||||||
| BACK | |||||||||||||||||||||||||