Vulnerabilities > CVE-2001-0904 - Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

microsoft

NVD

Published: 2001-11-20

Updated: 2021-07-23

Summary

Internet Explorer 5.5 and 6 with the Q312461 (MS01-055) patch modifies the HTTP_USER_AGENT (UserAgent) information that indicates that the patch has been installed, which could allow remote malicious web sites to more easily identify and exploit vulnerable clients.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Explorer 5.5 Microsoft Internet Explorer 6.0	2

References

http://www.securityfocus.com/bid/3556
http://www.iss.net/security_center/static/7581.php
http://marc.info/?l=bugtraq&m=100619268115798&w=2