5
CVE-2002-0023
- EPSS 37.87%
- Veröffentlicht 08.03.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:36
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to read arbitrary files via malformed requests to the GetObject function, which bypass some of GetObject's security checks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version5.01
Microsoft ≫ Internet Explorer Version5.5
Microsoft ≫ Internet Explorer Version6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 37.87% | 0.984 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-005
http://archives.neohapsis.com/archives/bugtraq/2002-01/0000.html
http://www.osvdb.org/3030
http://www.securityfocus.com/bid/3767
https://exchange.xforce.ibmcloud.com/vulnerabilities/7758
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A40
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A50
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A77