Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2005-0053
HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0053

2005-05-0204:00:00
[email protected]
web.nvd.nist.gov
9

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.871

Percentile

98.6%

JSON

Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via drag and drop events, aka the “Drag-and-Drop Vulnerability.”

Affected configurations

Nvd
Node
microsoftieMatch6.0sp1
OR
microsoftieMatch6.0sp2
OR
microsoftinternet_explorerMatch5.0.1
OR
microsoftinternet_explorerMatch5.0.1sp1
OR
microsoftinternet_explorerMatch5.0.1sp2
OR
microsoftinternet_explorerMatch5.0.1sp3
OR
microsoftinternet_explorerMatch5.0.1sp4
OR
microsoftinternet_explorerMatch5.5
OR
microsoftinternet_explorerMatch5.5sp1
OR
microsoftinternet_explorerMatch5.5sp2
OR
microsoftinternet_explorerMatch6.0
Node
microsoftwindows_2000
OR
microsoftwindows_2000sp1
OR
microsoftwindows_2000sp2
OR
microsoftwindows_2000sp3
OR
microsoftwindows_2000sp4
OR
microsoftwindows_2003_serverMatchenterprise64-bit
OR
microsoftwindows_2003_serverMatchenterprise_64-bit
OR
microsoftwindows_2003_serverMatchr264-bit
OR
microsoftwindows_2003_serverMatchr2datacenter_64-bit
OR
microsoftwindows_2003_serverMatchstandard64-bit
OR
microsoftwindows_2003_serverMatchweb
OR
microsoftwindows_98gold
OR
microsoftwindows_98se
OR
microsoftwindows_me
OR
microsoftwindows_xp64-bit
OR
microsoftwindows_xphome
OR
microsoftwindows_xpmedia_center
OR
microsoftwindows_xpgoldprofessional
OR
microsoftwindows_xpsp164-bit
OR
microsoftwindows_xpsp1home
OR
microsoftwindows_xpsp1media_center
OR
microsoftwindows_xpsp2home
OR
microsoftwindows_xpsp2media_center
OR
microsoftwindows_xpsp2tablet_pc
VendorProductVersionCPE
microsoftie6.0cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
microsoftie6.0cpe:2.3:a:microsoft:ie:6.0:sp2:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp1:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp2:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp3:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:*
microsoftinternet_explorer5.5cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
microsoftinternet_explorer5.5cpe:2.3:a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:*
microsoftinternet_explorer5.5cpe:2.3:a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*
Rows per page:
1-10 of 351

References

Related

cert 1
securityvulns 3
exploitdb 1
checkpoint_advisories 1
cve 1
cvelist 1
nessus 1
cert
cert
Microsoft DHTML Drag-and-Drop events insufficiently validated
2005-02-09 00:00:00
securityvulns
securityvulns
[Full-Disclosure] Secunia Research: Microsoft Internet Explorer Multiple Vulnerabilities
2005-02-11 00:00:00
Microsoft Security Bulletin MS05-008 Vulnerability in Windows Shell Could Allow Remote Code Execution (890047)
2005-02-08 00:00:00
Microsoft Security Bulletin MS05-014 Cumulative Security Update for Internet Explorer (867282)
2005-02-09 00:00:00
exploitdb
exploitdb
Microsoft Internet Explorer 5.x - Valid File Drag and Drop Embedded Code (MS04-038)
2004-10-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Internet Explorer Drag and Drop Code Execution (CVE-2005-0053)
2010-03-11 00:00:00
cve
cve
CVE-2005-0053
2005-05-02 04:00:00
cvelist
cvelist
CVE-2005-0053
2005-02-08 05:00:00
nessus
nessus
MS05-008: Vulnerability in Windows Shell (890047)
2005-02-08 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.871

Percentile

98.6%

JSON
Related for NVD:CVE-2005-0053
cert1securityvulns3exploitdb1checkpoint_advisories1cve1cvelist1nessus1