Vulnerabilities > CVE-2003-0447 - Unspecified vulnerability in Microsoft Internet Explorer 5.01/5.5/6.0

047910
CVSS 5.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
high complexity
microsoft
exploit available
NVD
Published: 2003-07-24
Updated: 2021-07-23

Summary

The Custom HTTP Errors capability in Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute script in the Local Zone via an argument to shdocvw.dll that causes a "javascript:" link to be generated.

Vulnerable Configurations

Part Description Count
Application
Microsoft
3

Exploit-Db

descriptionMicrosoft Internet Explorer 5 Custom HTTP Error HTML Injection Vulnerability. CVE-2003-0447 . Remote exploit for windows platform
idEDB-ID:22784
last seen2016-02-02
modified2003-06-17
published2003-06-17
reporterGreyMagic Software
sourcehttps://www.exploit-db.com/download/22784/
titleMicrosoft Internet Explorer 5 Custom HTTP Error HTML Injection Vulnerability

References