Source Element Cross-Domain flaw in Internet Explorer 6

IE does not properly identify the originating domain zone

A flaw in Microsoft Internet Explorer 5.01 and 6 means the Internet browser does not properly identify the originating domain zone. This can be a problem when handling redirects, which in turn allows remote attackers to read cross-domain Web pages. It might also allow attackers to execute code via a specially crafted web page.

Additional Resources:

About the author

    As CNET's former resident security expert, Robert Vamosi has been interviewed on the BBC, CNN, MSNBC, and other outlets to share his knowledge about the latest online threats and to offer advice on personal and corporate security.


    Join the discussion

    Conversation powered by Livefyre

    Show Comments Hide Comments