CVE-2004-0985 - Describable Hoop

Description

Internet Explorer 6.x on Windows XP SP2 allows remote attackers to execute arbitrary code as demonstrated using a document with a draggable file type such as .xml .doc .py .cdf .css .pdf or .ppt and using ADODB.Connection and ADODB.recordset to write to a .hta file that is interpreted in the Local Zone by HTML Help.

Reference

http://marc.info/?l=bugtraq&m=109829111200055&w=2 http://marc.info/?l=ntbugtraq&m=109828076802478&w=2 http://marc.info/?l=bugtraq&m=109830296130857&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/17824