Vulnerabilities > CVE-2003-0233 - Unspecified vulnerability in Microsoft IE and Internet Explorer

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

microsoft

NVD

Published: 2003-05-12

Updated: 2021-07-23

Summary

Heap-based buffer overflow in plugin.ocx for Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code via the Load() method, a different vulnerability than CVE-2003-0115.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Explorer 5.5 Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 5.0.1 Microsoft IE 6.0	9

Oval

accepted

2014-02-24T04:00:07.767-05:00

class

vulnerability

contributors

name Tiffany Bergeron
organization The MITRE Corporation
name Harvey Rubinovitz
organization The MITRE Corporation
name Maria Mikhno
organization ALTX-SOFT

description

Heap-based buffer overflow in plugin.ocx for Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code via the Load() method, a different vulnerability than CVE-2003-0115.

family

windows

oval:org.mitre.oval:def:1094

status

accepted

submitted

2004-04-30T12:00:00.000-04:00

title

IE plugin.ocx Heap Overflow

version

Summary

Vulnerable Configurations

Oval

References