CVE-2002-0025Deployment of Wrong Handler in Microsoft Internet Explorer

CWE-430Deployment of Wrong Handler3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
15.3%
top 5.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedMar 8
Latest updateApr 30

Description

Internet Explorer 5.01, 5.5 and 6.0 does not properly handle the Content-Type HTML header field, which allows remote attackers to modify which application is used to process a document.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDmicrosoft/internet_explorer5.01, 5.5, 6.0+2

🔴Vulnerability Details

1
GHSA
GHSA-67m6-mx3x-jxgv: Internet Explorer 52022-04-30

📐Framework References

1
CWE
Deployment of Wrong Handler
CVE-2002-0025 — Deployment of Wrong Handler | cvebase