5
CVE-2004-2090
- EPSS 16.02%
- Veröffentlicht 07.02.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:08:58
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Microsoft Internet Explorer 5.0.1 through 6.0 allows remote attackers to determine the existence of arbitrary files via the VBScript LoadPicture method, which returns an error code if the file does not exist.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version5.0.1
Microsoft ≫ Internet Explorer Version5.0.1 Updatesp1
Microsoft ≫ Internet Explorer Version5.0.1 Updatesp2
Microsoft ≫ Internet Explorer Version5.0.1 Updatesp3
Microsoft ≫ Internet Explorer Version5.0.1 Updatesp4
Microsoft ≫ Internet Explorer Version5.5
Microsoft ≫ Internet Explorer Version5.5 Updatesp1
Microsoft ≫ Internet Explorer Version5.5 Updatesp2
Microsoft ≫ Internet Explorer Version6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 16.02% | 0.965 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://lists.grok.org.uk/pipermail/full-disclosure/2004-February/016881.html
http://secunia.com/advisories/10820
http://www.securityfocus.com/bid/9611
https://exchange.xforce.ibmcloud.com/vulnerabilities/15078