CVE-2003-0532 in Internet Explorerinfo

Summary

Internet Explorer 5.01 SP3 through 6.0 SP1 does not properly determine object types that are returned by web servers, which could allow remote attackers to execute arbitrary code via an object tag with a data parameter to a malicious file hosted on a server that returns an unsafe Content-Type, aka the "Object Type" vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

07/08/2003

Disclosure

08/27/2003

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

7.3

EPSS

0.27122

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-0532
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0532
CVE Details	https://www.cvedetails.com/cve/CVE-2003-0532/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!