CVE-2004-0839 vulnerability in Microsoft and Other Products
Published on August 18, 2004

Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbitrary programs via a web page that uses certain styles and the AnchorClick behavior, popup windows, and drag-and-drop capabilities to drop the program in the local startup folder, as demonstrated by "wottapoop.html".

Vendor Advisory NVD

Products Associated with CVE-2004-0839

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2004-0839 are published in these products:

Microsoft Internet Explorer (IE)

Avaya Ip600 Media Servers

Avaya Definity One Media Server

Avaya S8100

Avaya S3400

Nortel Ip Softphone 2050

Microsoft Windows 2000

Nortel Mobile Voice Client 2050

Nortel Optivity Telephony Manager

Microsoft Windows 2003 Server

Microsoft Windows 98se

Microsoft Windows Me

Microsoft Windows XP

Nortel Symposium Web Centre Portal

Nortel Symposium Web Client

Avaya Modular Messaging Message Storage Server

Microsoft Windows 98

Exploit Probability

EPSS

42.01%

Percentile

97.36%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2004-0839 vulnerability in Microsoft and Other ProductsPublished on August 18, 2004

Products Associated with CVE-2004-0839

Exploit Probability

CVE-2004-0839 vulnerability in Microsoft and Other Products
Published on August 18, 2004