CVE-2001-0154

Description

HTML e-mail feature in Internet Explorer 5.5 and earlier allows attackers to execute attachments by setting an unusual MIME type for the attachment, which Internet Explorer does not process correctly.

Affected Software
References

Software	From	Fixed in
microsoft / internet_explorer	-	5.5.x
microsoft / internet_explorer	5.01	5.01.x

http://marc.info/?l=bugtraq&m=98596775905044&w=2
http://securitytracker.com/id?1001197
http://www.cert.org/advisories/CA-2001-06.html
http://www.ciac.org/ciac/bulletins/l-066.shtml
http://www.osvdb.org/7806
http://www.securityfocus.com/bid/2524
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-020
https://exchange.xforce.ibmcloud.com/vulnerabilities/6306
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A141

Severity: High

CVE: CVE-2001-0154
Published: May 3, 2001
Updated: Apr 13, 2023
Exploit:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CVE-2001-0154

Description

Details

CVSS v2