CVE-2002-0188 in Internet Explorerinformazioni

Riassunto

di MITRE

Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malformed Content-Disposition and Content-Type header fields that cause the application for the spoofed file type to pass the file back to the operating system for handling rather than raise an error message, aka the second variant of the "Content Disposition" vulnerability.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

29/05/2002

Moderazione

accettato

Voce

VDB-18150

CPE

pronto

CWE

CWE-269 (confermato)

CVSS

7.3 (VulDB)

EPSS

0.16347

KEV

Attività

molto basso

Settore

Police, Hostingprovider, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0188
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0188
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0188/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!