CVE-2005-2829

CVE Database · CVE-2005-2829

CVE-2005-2829

· N/AModified

CVSS v3.1

N/A

EPSS

18.59%

Published

Dec 14, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Multiple design errors in Microsoft Internet Explorer 5.01, 5.5, and 6 allow user-assisted attackers to execute arbitrary code by (1) overlaying a malicious new window above a file download box, then (2) using a keyboard shortcut and delaying the display of the file download box until the user hits a shortcut that activates the "Run" button, aka "File Download Dialog Box Manipulation Vulnerability."

Affected Products (4)

microsoft · ievulnerable

microsoft · internet_explorervulnerable

References (20)

http://marc.info/?l=full-disclosure&m=113450519906463&w=2

http://secunia.com/advisories/15368

Vendor Advisory

http://secunia.com/advisories/18064

Vendor Advisory

http://secunia.com/advisories/18311

Vendor Advisory

http://secunia.com/secunia_research/2005-21/advisory