Vulnerabilities > CVE-2001-0875 - Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description MS Internet Explorer 6.0 SP2 File Download Security Warning Bypass. CVE-2001-0875. Remote exploit for windows platform id EDB-ID:641 last seen 2016-01-31 modified 2004-11-19 published 2004-11-19 reporter cyber_flash source https://www.exploit-db.com/download/641/ title Microsoft Internet Explorer 6.0 SP2 File Download Security Warning Bypass description Microsoft Internet Explorer 5.5/6.0 Spoofable File Extensions Vulnerability. CVE-2001-0875. Remote exploit for windows platform id EDB-ID:21164 last seen 2016-02-02 modified 2001-11-26 published 2001-11-26 reporter StatiC source https://www.exploit-db.com/download/21164/ title Microsoft Internet Explorer 5.5/6.0 Spoofable File Extensions Vulnerability
Oval
accepted | 2016-02-19T10:00:00.000-04:00 | ||||||||||||||||||||
class | vulnerability | ||||||||||||||||||||
contributors |
| ||||||||||||||||||||
description | Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download. | ||||||||||||||||||||
family | windows | ||||||||||||||||||||
id | oval:org.mitre.oval:def:1014 | ||||||||||||||||||||
status | accepted | ||||||||||||||||||||
submitted | 2004-04-29T04:00:00.000-04:00 | ||||||||||||||||||||
title | IE File Download Dialog Deception Vulnerability | ||||||||||||||||||||
version | 70 |
References
- http://www.securityfocus.com/archive/1/245594
- http://www.securityfocus.com/bid/3597
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1014
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7636
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-058