7.5
CVE-2001-0727
- EPSS 31.01%
- Veröffentlicht 14.12.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:54:50
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Internet Explorer 6.0 allows remote attackers to execute arbitrary code by modifying the Content-Disposition and Content-Type header fields in a way that causes Internet Explorer to believe that the file is safe to open without prompting the user, aka the "File Execution Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version5.5
Microsoft ≫ Internet Explorer Version6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 31.01% | 0.98 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-058
http://www.ciac.org/ciac/bulletins/m-027.shtml
http://marc.info/?l=bugtraq&m=100835204509262&w=2
http://marc.info/?l=bugtraq&m=100861273114437&w=2
http://www.cert.org/advisories/CA-2001-36.html
http://www.kb.cert.org/vuls/id/443699
http://www.osvdb.org/3033
http://www.securityfocus.com/bid/3578
https://exchange.xforce.ibmcloud.com/vulnerabilities/7703
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A921