Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0712

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0712
Last Modified 05 Sep 2008 04:24:45
Published 30 Oct 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0712

Summary

The rendering engine in Internet Explorer determines the MIME type independently of the type that is specified by the server, which allows remote servers to automatically execute script which is placed in a file whose MIME type does not normally support scripting, such as text (.txt), JPEG (.jpg), etc.

Vulnerable Systems

Application

  • Microsoft Ie 5.0

  • Microsoft Ie 5.0.1

  • Microsoft Ie 5.5


References

BUGTRAQ - 20010729 Re: TXT or HTML? -- IE NEW BUG

BUGTRAQ - 20010727 TXT or HTML? -- IE NEW BUG

BID - 3116


Last Updated: 27 May 2016 10:36:22