CVE-2001-0712

The rendering engine in Internet Explorer determines the MIME type independently of the type that is specified by the server, which allows remote servers to automatically execute script which is placed in a file whose MIME type does not normally support scripting, such as text (.txt), JPEG (.jpg), etc.

Published: Oct 30, 2001
Updated: Apr 13, 2023
CVE: CVE-2001-0712
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / internet_explorer	5.0	5.0.x
microsoft / internet_explorer	5.0.1	5.0.1.x
microsoft / internet_explorer	5.5	5.5.x

http://www.securityfocus.com/archive/1/200109
http://www.securityfocus.com/archive/1/200291
http://www.securityfocus.com/bid/3116

Vulnerability Database

289,599

CVE-2001-0712