CVE-2001-0875
published 2001-11-26CVE-2001-0875: Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way…
PriorityP426high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
28.06%
97.9th percentile
Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Internet Explorer 6.0 SP2 - File Download Security Warning Bypass
exploitdb·2004-11-19
CVE-2001-0875 Microsoft Internet Explorer 6.0 SP2 - File Download Security Warning Bypass
Microsoft Internet Explorer 6.0 SP2 - File Download Security Warning Bypass
---
Orginal Advisory and exploit by cyber_flash (Vengy)
Circumvent Windows XP SP2 security features using execCommand 'SaveAs' function!
Demonstration:
Notice that you don't receive any warning messages such as:
"File Download - Security Warning" or "Open File - Security Warning".
If "Hide file extensions for known file types" (Tools->Folder Options...->View) is enabled, (ie., 'funny joke.exe' appears as 'funny joke')
it's possible to trick a user into downloading a malicious executable file masquerading as an html document!
Windows XP SP2 normally prevents direct downloading. For example: calc.exe
Description:
When your browser cannot locate the URL that you entered in the address bar, you will receive
Exploit-DB
Microsoft Internet Explorer 5.5/6.0 - Spoofable File Extensions
exploitdb·2001-11-26
CVE-2001-0875 Microsoft Internet Explorer 5.5/6.0 - Spoofable File Extensions
Microsoft Internet Explorer 5.5/6.0 - Spoofable File Extensions
---
source: https://www.securityfocus.com/bid/3597/info
It is possible for a malicious webmaster, hosting files on an website, to spoof file extensions for users of Internet Explorer. For example, an .exe file can be made to look like a .txt (or other seemingly harmless file type) file in the Download dialog.
When including a certain string of characters between the filename and the actual file extension, IE will display the specified misleading file extension type.
The end result is that a malicious webmaster is able to entice a user to open or save arbitrary files to their local system.
* It has been reported that patched systems may still be vulnerable to this issue. If the attacker composes a .hta file, using the met
No writeups or analysis indexed.
http://www.securityfocus.com/archive/1/245594http://www.securityfocus.com/bid/3597https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-058https://exchange.xforce.ibmcloud.com/vulnerabilities/7636https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1014http://www.securityfocus.com/archive/1/245594http://www.securityfocus.com/bid/3597https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-058https://exchange.xforce.ibmcloud.com/vulnerabilities/7636https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1014
2001-11-26
Published