CVE-2003-1041 in Internet Explorerinfo

Summary

Internet Explorer 5.x and 6.0 allows remote attackers to execute arbitrary programs via a modified directory traversal attack using a URL containing ".." (dot dot) sequences and a filename that ends in "::" which is treated as a .chm file even if it does not have a .chm extension. NOTE: this bug may overlap CVE-2004-0475.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

05/13/2004

Disclosure

06/14/2004

Moderation

VulDB entry created

Entries

2: VDB-766

CPE

ready

CWE

CWE-269 (Confirmed)

Exploit

Download

CVSS

7.6

EPSS

0.65434

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-1041
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-1041
CVE Details	https://www.cvedetails.com/cve/CVE-2003-1041/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!