Описание
The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by encoding it within an email message or news post.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:microsoft:internet_explorer:5:*:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.16347
Средний
7.5 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by encoding it within an email message or news post.
EPSS
Процентиль: 95%
0.16347
Средний
7.5 High
CVSS2
Дефекты
CWE-20