CVE-2001-0643

Опубликовано: 20 сент. 2001

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

Internet Explorer 5.5 does not display the Class ID (CLSID) when it is at the end of the file name, which could allow attackers to trick the user into executing dangerous programs by making it appear that the document is of a safe file type.

Ссылки

http://vil.nai.com/vil/virusSummary.asp?virus_k=99048
Exploit
Patch
Vendor Advisory
http://www.guninski.com/clsidext.html
http://www.osvdb.org/7858
http://www.sarc.com/avcenter/venc/data/vbs.postcard%40mm.html
http://www.securityfocus.com/archive/1/176909
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/2612
https://exchange.xforce.ibmcloud.com/vulnerabilities/6426
http://vil.nai.com/vil/virusSummary.asp?virus_k=99048
Exploit
Patch
Vendor Advisory
http://www.guninski.com/clsidext.html
http://www.osvdb.org/7858
http://www.sarc.com/avcenter/venc/data/vbs.postcard%40mm.html
http://www.securityfocus.com/archive/1/176909
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/2612
https://exchange.xforce.ibmcloud.com/vulnerabilities/6426

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.17253

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-c2hj-4gfw-x63q

github

больше 3 лет назад