Lucene search

[email protected]CVE-2001-0712

HistoryOct 30, 2001 - 5:00 a.m.

CVE-2001-0712

2001-10-3005:00:00

[email protected]

web.nvd.nist.gov

cve-2001-0712

internet explorer

rendering engine

mime type

script execution

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.5%

JSON

The rendering engine in Internet Explorer determines the MIME type independently of the type that is specified by the server, which allows remote servers to automatically execute script which is placed in a file whose MIME type does not normally support scripting, such as text (.txt), JPEG (.jpg), etc.

Affected configurations

NVD

Node

microsoftinternet_explorerMatch5.0

microsoftinternet_explorerMatch5.0.1

microsoftinternet_explorerMatch5.5

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq5.0
microsoft:internet_explorermicrosoft internet explorereq5.0.1
microsoft:internet_explorermicrosoft internet explorereq5.5

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	5.0
microsoft:internet_explorer	microsoft internet explorer	eq	5.0.1
microsoft:internet_explorer	microsoft internet explorer	eq	5.5

References

www.securityfocus.com/archive/1/200109

www.securityfocus.com/archive/1/200291

www.securityfocus.com/bid/3116

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.5%

JSON

Related for CVE-2001-0712

nvd1 cvelist1