Lucene search

MitreCVE-2002-0647

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-0647

2003-04-0205:00:00

mitre

web.nvd.nist.gov

cve-2002-0647

buffer overflow

activex control

internet explorer

remote code execution

security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.11

Percentile

95.1%

JSON

Buffer overflow in a legacy ActiveX control used to display specially formatted text in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to execute arbitrary code, aka “Buffer Overrun in Legacy Text Formatting ActiveX Control”.

Affected configurations

Nvd

Node

microsoftinternet_explorerMatch5.01

microsoftinternet_explorerMatch5.01sp1

microsoftinternet_explorerMatch5.01sp2

microsoftinternet_explorerMatch5.5

microsoftinternet_explorerMatch5.5sp1

microsoftinternet_explorerMatch5.5sp2

microsoftinternet_explorerMatch6.0

VendorProductVersionCPE
microsoftinternet_explorer5.01cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*
microsoftinternet_explorer5.01cpe:2.3:a:microsoft:internet_explorer:5.01:sp1:*:*:*:*:*:*
microsoftinternet_explorer5.01cpe:2.3:a:microsoft:internet_explorer:5.01:sp2:*:*:*:*:*:*
microsoftinternet_explorer5.5cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
microsoftinternet_explorer5.5cpe:2.3:a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:*
microsoftinternet_explorer5.5cpe:2.3:a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*
microsoftinternet_explorer6.0cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	internet_explorer	5.01	cpe:2.3:a:microsoft:internet_explorer:5.01:::::::*
microsoft	internet_explorer	5.01	cpe:2.3:a:microsoft:internet_explorer:5.01:sp1::::::
microsoft	internet_explorer	5.01	cpe:2.3:a:microsoft:internet_explorer:5.01:sp2::::::
microsoft	internet_explorer	5.5	cpe:2.3:a:microsoft:internet_explorer:5.5:::::::*
microsoft	internet_explorer	5.5	cpe:2.3:a:microsoft:internet_explorer:5.5:sp1::::::
microsoft	internet_explorer	5.5	cpe:2.3:a:microsoft:internet_explorer:5.5:sp2::::::
microsoft	internet_explorer	6.0	cpe:2.3:a:microsoft:internet_explorer:6.0:::::::*

References

www.iss.net/security_center/static/9935.php

www.securityfocus.com/bid/5558

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-047

Social References

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.11

Percentile

95.1%

JSON

Related for CVE-2002-0647