Signature Detail

HTTP: Internet Explorer FRAME Tag Flood

This signature detects attempts to exploit a known vulnerability in Microsoft Internet Explorer 6. By including an excessive number of FRAME tags in a maliciously crafted HTML document, attackers can force IE to download and run a remote executable, enabling the attacker to gain administrator access.

Extended Description

Remote attackers could exploit this vulnerability to crash an affected machine or to execute arbitrary code with the privileges of the current user.

References

• URL: http://www.securitytracker.com/alerts/2003/May/1006774.html