CVE-2005-2087

Опубликовано: 05 июл. 2005

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

Internet Explorer 5.01 SP4 up to 6 on various Windows operating systems, including IE 6.0.2900.2180 on Windows XP, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not ActiveX controls, as demonstrated using the JVIEW Profiler (Javaprxy.dll). NOTE: the researcher says that the vendor could not reproduce this problem.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:ie:5.1:*:mac_os:*:*:*:*:*

cpe:2.3:a:microsoft:ie:5.2.3:*:macintosh:*:*:*:*:*

cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:5.1:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:5.01:sp4:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:5.5:preview:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_explorer:6.0.2900.2180:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.65273

Средний

5 Medium

CVSS2

Дефекты

CWE-399

Связанные уязвимости

GHSA-rfj5-j343-wwwp

github

почти 4 года назад