CVE-2002-0980
published 2002-09-24CVE-2002-0980: The Web Folder component for Internet Explorer 5.5 and 6.0 writes an error message to a known location in the temporary folder, which allows remote attackers…
PriorityP432high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
26.67%
97.8th percentile
The Web Folder component for Internet Explorer 5.5 and 6.0 writes an error message to a known location in the temporary folder, which allows remote attackers to execute arbitrary code by injecting it into the error message, then referring to the error message file via a mhtml: URL.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=102942234427691&w=2http://marc.info/?l=ntbugtraq&m=102937705527922&w=2http://marc.info/?l=vuln-dev&m=102943486811091&w=2http://www.iss.net/security_center/static/9881.phphttp://www.securityfocus.com/bid/5473https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-014http://marc.info/?l=bugtraq&m=102942234427691&w=2http://marc.info/?l=ntbugtraq&m=102937705527922&w=2http://marc.info/?l=vuln-dev&m=102943486811091&w=2http://www.iss.net/security_center/static/9881.phphttp://www.securityfocus.com/bid/5473https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-014
2002-09-24
Published