CVE-2003-1328

Microsoft Internet Explorer <6.0 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-1328. PoCs published by Andreas Sandblad.

AI-analyzed exploit summary The exploit leverages the showHelp() function in Microsoft Internet Explorer to execute arbitrary JavaScript, read local files, and run system commands via pluggable protocols. It demonstrates multiple attack vectors including cookie theft, file disclosure, and command execution.

Description

The showHelp() function in Microsoft Internet Explorer 5.01, 5.5, and 6.0 supports certain types of pluggable protocols that allow remote attackers to bypass the cross-domain security model and execute arbitrary code, aka "Improper Cross Domain Security Validation with ShowHelp functionality."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Andreas Sandblad · textremotewindows

https://www.exploit-db.com/exploits/22226

View Code ZIP pw:eip

The exploit leverages the showHelp() function in Microsoft Internet Explorer to execute arbitrary JavaScript, read local files, and run system commands via pluggable protocols. It demonstrates multiple attack vectors including cookie theft, file disclosure, and command execution.

Classification

Working Poc 95%

Attack Type

Rce | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Internet Explorer (versions affected by CVE-2003-1328)

No auth needed

Prerequisites: Victim must visit a malicious webpage or execute the provided JavaScript in a vulnerable version of Internet Explorer

MITRE ATT&CK