Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0875


Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0875
Last Modified 05 Sep 2008 04:25:08
Published 26 Nov 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download.

Vulnerable Systems


  • Microsoft Ie 5.5

  • Microsoft Ie 6.0


XF - ie-file-download-ext-spoof(7636)

BID - 3597

BUGTRAQ - 20011126 File extensions spoofable in MSIE download dialog

MS - MS01-058

Last Updated: 27 May 2016 10:36:26