Back to search
CVE-2002-0980
Published: Aug 23, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
The Web Folder component for Internet Explorer 5.5 and 6.0 writes an error message to a known location in the temporary folder, which allows remote attackers to execute arbitrary code by injecting it into the error message, then referring to the error message file via a mhtml: URL.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
MS03-014
vendor-advisory
x_refsource_MS
20020815 SILLY BEHAVIOR : Internet Explorer 5.5 - 6.0
mailing-list
x_refsource_VULN-DEV
20020815 SILLY BEHAVIOR : Internet Explorer 5.5 - 6.0
mailing-list
x_refsource_BUGTRAQ
ie-webfolder-script-injection(9881)
vdb-entry
x_refsource_XF
5473
vdb-entry
x_refsource_BID
20020815 SILLY BEHAVIOR : Internet Explorer 5.5 - 6.0
mailing-list
x_refsource_NTBUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now