Описание
Internet Explorer 5.5 and earlier executes Telnet sessions using command line arguments that are specified by the web site, which could allow remote attackers to execute arbitrary commands if the IE client is using the Telnet client provided in Services for Unix (SFU) 2.0, which creates session transcripts.
Ссылки
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 5.5 (включая)
cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.14377
Средний
5.1 Medium
CVSS2
Дефекты
CWE-88
Связанные уязвимости
github
больше 3 лет назад
Internet Explorer 5.5 and earlier executes Telnet sessions using command line arguments that are specified by the web site, which could allow remote attackers to execute arbitrary commands if the IE client is using the Telnet client provided in Services for Unix (SFU) 2.0, which creates session transcripts.
EPSS
Процентиль: 94%
0.14377
Средний
5.1 Medium
CVSS2
Дефекты
CWE-88