5
CVE-2001-0149
- EPSS 32.21%
- Veröffentlicht 02.06.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:45
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Windows Scripting Host in Internet Explorer 5.5 and earlier allows remote attackers to read arbitrary files via the GetObject Javascript function and the htmlfile ActiveX object.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version <= 5.5
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 32.21% | 0.981 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-015
http://archives.neohapsis.com/archives/bugtraq/2000-09/0305.html
http://marc.info/?l=ntbugtraq&m=96999020527583&w=2
http://www.securityfocus.com/bid/1718
https://exchange.xforce.ibmcloud.com/vulnerabilities/5293