Lucene search

[email protected]CVE-2001-0643

HistorySep 01, 2004 - 4:00 a.m.

CVE-2001-0643

2004-09-0104:00:00

[email protected]

web.nvd.nist.gov

internet explorer 5.5

security flaw

clsid display issue

cve-2001-0643

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.1%

JSON

Internet Explorer 5.5 does not display the Class ID (CLSID) when it is at the end of the file name, which could allow attackers to trick the user into executing dangerous programs by making it appear that the document is of a safe file type.

Affected configurations

NVD

Node

microsoftinternet_explorerMatch5.5

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq5.5

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	5.5

References

vil.nai.com/vil/virusSummary.asp?virus_k=99048

www.guninski.com/clsidext.html

www.osvdb.org/7858

www.sarc.com/avcenter/venc/data/vbs.postcard%40mm.html

www.securityfocus.com/archive/1/176909

www.securityfocus.com/bid/2612

exchange.xforce.ibmcloud.com/vulnerabilities/6426

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.1%

JSON

Related for CVE-2001-0643

nvd1 cvelist1