5

CVE-2003-0116

Exploit

EPSS 25.47%
Veröffentlicht 12.05.2003 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check the Cascading Style Sheet input parameter for Modal dialogs, which allows remote attackers to read files on the local system via a web page containing script that creates a dialog and then accesses the target files, aka "Modal Dialog script execution."

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Ie Version6.0 Updatesp1

Microsoft ≫ Internet Explorer Version5.0.1

Microsoft ≫ Internet Explorer Version5.0.1 Updatesp1

Microsoft ≫ Internet Explorer Version5.0.1 Updatesp2

Microsoft ≫ Internet Explorer Version5.0.1 Updatesp3

Microsoft ≫ Internet Explorer Version5.5

Microsoft ≫ Internet Explorer Version5.5 Updatesp1

Microsoft ≫ Internet Explorer Version5.5 Updatesp2

Microsoft ≫ Internet Explorer Version6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	25.47%	0.957

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-015

http://www.kb.cert.org/vuls/id/244729

US Government Resource

http://www.securityfocus.com/archive/1/301945

http://www.securityfocus.com/bid/6306

Patch

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2003-0116

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-0116

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-0116

EUVD