Lucene search

[email protected]CVE-2001-0665

HistoryMar 09, 2002 - 5:00 a.m.

CVE-2001-0665

2002-03-0905:00:00

[email protected]

web.nvd.nist.gov

internet explorer 6

remote attackers

http request encoding vulnerability

privilege gain

unauthorized operations.

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.04 Low

EPSS

Percentile

92.1%

JSON

Internet Explorer 6 and earlier allows remote attackers to cause certain HTTP requests to be automatically executed and appear to come from the user, which could allow attackers to gain privileges or execute operations within web-based services, aka the “HTTP Request Encoding vulnerability.”

Affected configurations

NVD

Node

microsoftieRange≤6windows_server_2003_sp1

CPENameOperatorVersion
microsoft:iemicrosoft iele6

CPE	Name	Operator	Version
microsoft:ie	microsoft ie	le	6

References

www.osvdb.org/1972

www.securityfocus.com/bid/3421

docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-051

exchange.xforce.ibmcloud.com/vulnerabilities/7259

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.04 Low

EPSS

Percentile

92.1%

JSON

Related for CVE-2001-0665

cvelist1 nvd1