Lucene search

[email protected]CVE-2002-1188

HistoryDec 11, 2002 - 5:00 a.m.

CVE-2002-1188

2002-12-1105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-1188

internet explorer

vulnerability

path identification

user information disclosure

security

nvd

6.8 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.333 Low

EPSS

Percentile

97.0%

JSON

Internet Explorer 5.01 through 6.0 allows remote attackers to identify the path to the Temporary Internet Files folder and obtain user information such as cookies via certain uses of the OBJECT tag, which are not subjected to the proper security checks, aka “Temporary Internet Files folders Name Reading.”

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq5.5
microsoft:internet_explorermicrosoft internet explorereq5.0.1
microsoft:internet_explorermicrosoft internet explorereq6.0

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	5.5
microsoft:internet_explorer	microsoft internet explorer	eq	5.0.1
microsoft:internet_explorer	microsoft internet explorer	eq	6.0

References

marc.info/?l=bugtraq&m=103184415307193&w=2

www.ciac.org/ciac/bulletins/n-018.shtml

www.iss.net/security_center/static/10665.php

www.securityfocus.com/bid/6217

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-066

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A444

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A690

6.8 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.333 Low

EPSS

Percentile

97.0%

JSON

Related for CVE-2002-1188

checkpoint_advisories1