Internet Explorer 6 and earlier allows remote attackers...
Moderate severity
Unreviewed
Published
Apr 30, 2022
to the GitHub Advisory Database
•
Updated Apr 3, 2025
Description
Published by the National Vulnerability Database
Aug 18, 2003
Published to the GitHub Advisory Database
Apr 30, 2022
Last updated
Apr 3, 2025
Internet Explorer 6 and earlier allows remote attackers to create chromeless windows using the Javascript window.createPopup method, which could allow attackers to simulate a victim's display and conduct unauthorized activities or steal sensitive data via social engineering.
References