exploitDog

CVE-2004-1376

Опубликовано: 30 дек. 2004

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

Directory traversal vulnerability in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.

Ссылки

http://marc.info/?l=bugtraq&m=110461358930103&w=2
http://secunia.com/advisories/13704
Patch
Vendor Advisory
http://www.7a69ezine.org/node/view/176
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=110461358930103&w=2
http://secunia.com/advisories/13704
Patch
Vendor Advisory
http://www.7a69ezine.org/node/view/176
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.11239

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5q37-r2pc-3hm5

github

почти 4 года назад

Directory traversal vulnerability in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.

EPSS

Процентиль: 93%

0.11239

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other