CVE-2003-0115Microsoft IE vulnerability

3 documents3 sources
Severity
7.5HIGHNVD
EPSS
14.3%
top 5.58%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft IEMicrosoft Internet Explorer
Timeline
PublishedMay 12
Latest updateApr 29

Description

Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check parameters that are passed during third party rendering, which could allow remote attackers to execute arbitrary web script, aka the "Third Party Plugin Rendering" vulnerability, a different vulnerability than CVE-2003-0233.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDmicrosoft/internet_explorer5.0.1, 5.5, 6.0+2
NVDmicrosoft/ie6.0

🔴Vulnerability Details

2
GHSA
GHSA-rcwm-qwrf-r7p7: Microsoft Internet Explorer 52022-04-29
CVEList
CVE-2003-0115: Microsoft Internet Explorer 52003-05-02
CVE-2003-0115 — Microsoft IE vulnerability | cvebase