CVE-2004-1173 - Bossiest Active
Description
Internet Explorer 6 allows remote attackers to bypass the popup blocker via the document object model (DOM) methods in the DHTML Dynamic HTML (DHTML) Editing Component (DEC) and Javascript that calls showModalDialog.
Reference
http://marc.info/?l=ntbugtraq&m=110271016129952&w=2 http://marc.info/?l=bugtraq&m=110271114525795&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/18444