Moderate

CVE-2002-0052 - Unspecified vulnerability in Microsoft Internet Explorer

Publication: 2002-03-08

Summary

Internet Explorer 6.0 and earlier does not properly handle VBScript in certain domain security checks, which allows remote attackers to read arbitrary files.

Risk level (CVSS 5)

Moderate

5.0

Access Vector

Network
Adjacent Network
Local

Access Complexity

Low
Medium
High

Authentication

None
Single
Multiple

Confident. Impact

Complete
Partial
None

Integrity Impact

Complete
Partial
None

Affected Products

Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0

References

http://securitytracker.com/id?1003630
http://www.microsoft.com/technet/security/bulletin/ms02-009.asp
http://www.securityfocus.com/bid/4158