Vulnerabilities > CVE-2002-2031 - Unspecified vulnerability in Microsoft Internet Explorer

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
microsoft
exploit available
NVD
Published: 2002-12-31
Updated: 2021-07-23

Summary

Internet Explorer 5.0, 5.0.1 and 5.5 with JavaScript execution enabled allows remote attackers to determine the existence of arbitrary files via a script tag with a src parameter that references a non-JavaScript file, then using the onError event handler to monitor the results.

Vulnerable Configurations

Part Description Count
Application
Microsoft
7

Exploit-Db

  • descriptionMicrosoft Internet Explorer 5 JavaScript Local File Enumeration Vulnerability (2). CVE-2002-2031. Remote exploit for windows platform
    idEDB-ID:21199
    last seen2016-02-02
    modified2002-01-03
    published2002-01-03
    reporterLiu Die
    sourcehttps://www.exploit-db.com/download/21199/
    titleMicrosoft Internet Explorer 5 JavaScript Local File Enumeration Vulnerability 2
  • descriptionMicrosoft Internet Explorer 5 JavaScript Local File Enumeration Vulnerability (1). CVE-2002-2031. Remote exploit for windows platform
    idEDB-ID:21198
    last seen2016-02-02
    modified2002-01-03
    published2002-01-03
    reporterTom Micklovitch
    sourcehttps://www.exploit-db.com/download/21198/
    titleMicrosoft Internet Explorer 5 JavaScript Local File Enumeration Vulnerability 1

References