Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0025

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0025
Last Modified 10 Sep 2008 03:11:04
Published 08 Mar 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0025

Summary

Internet Explorer 5.01, 5.5 and 6.0 does not properly handle the Content-Type HTML header field, which allows remote attackers to modify which application is used to process a document.

Vulnerable Systems

Application

  • Microsoft Ie 5.01

  • Microsoft Ie 5.5

  • Microsoft Ie 6.0


References

MS - MS02-005

XF - ie-application-invocation(8118)

BID - 4085

BUGTRAQ - 20020212 [ GFISEC04102001 ] Internet Explorer and Access allow macros to be executed automatically


Last Updated: 27 May 2016 10:36:44