CVE-2004-0475

Опубликовано: 07 июл. 2004

Источник: nvd

CVSS2: 5.1

EPSS Низкий

Описание

The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM files via a double backward slash ("\") before the target CHM file, as demonstrated using an "ms-its" URL to ntshared.chm. NOTE: this bug may overlap CVE-2003-1041.

Ссылки

http://www.securityfocus.com/archive/1/363202
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/10348
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16147
http://www.securityfocus.com/archive/1/363202
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/10348
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16147

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.09895

Низкий

5.1 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-624v-gqcq-xp7r

github

больше 3 лет назад

The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM files via a double backward slash ("\\") before the target CHM file, as demonstrated using an "ms-its" URL to ntshared.chm. NOTE: this bug may overlap CVE-2003-1041.