Описание
The execCommand method in Microsoft Internet Explorer 6.0 SP2 allows remote attackers to bypass the "File Download - Security Warning" dialog and save arbitrary files with arbitrary extensions via the SaveAs command.
The execCommand method in Microsoft Internet Explorer 6.0 SP2 allows remote attackers to bypass the "File Download - Security Warning" dialog and save arbitrary files with arbitrary extensions via the SaveAs command.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-1331
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18181
- http://archives.neohapsis.com/archives/bugtraq/2004-11/0260.html
- http://secunia.com/advisories/13203
- http://securityreason.com/securityalert/3220
- http://www.frsirt.com/exploits/20041119.IESP2Unpatched.php
- http://www.kb.cert.org/vuls/id/743974
- http://www.securityfocus.com/bid/11686
EPSS
Процентиль: 96%
0.27108
Средний
CVE ID
Связанные уязвимости
nvd
почти 21 год назад
The execCommand method in Microsoft Internet Explorer 6.0 SP2 allows remote attackers to bypass the "File Download - Security Warning" dialog and save arbitrary files with arbitrary extensions via the SaveAs command.
EPSS
Процентиль: 96%
0.27108
Средний